Test case 140227

Type: source code
State: mixed
Status: candidate
Language: Java
Submission Date: 21 May 2013

Description

CWE: 506 Embedded Malicious Code
Sinks: base64_encoded_payload
GoodSink: Use a plaintext command
BadSink : Use a base64 encoded payload in an attempt to hide the command
Flow Variant: 04 Control flow: if(PRIVATE_STATIC_FINAL_TRUE) and if(PRIVATE_STATIC_FINAL_FALSE)

Flaws

CWE-506 Embedded Malicious Code

Test Suites

Juliet Java 1.3 with extra support
Juliet Java 1.2
Juliet Java 1.2 with extra support
Juliet Java 1.3

Documentation

Juliet 1.3 Test Suite: Changes From 1.2
Release Log for Juliet 1.3
Juliet v1.2 for Java cases.pdf

Have any comments on this test case? Please, send us an email.