Package illustrating a test case

Test case 1485

Type: source code
State: bad
Author: Robert C Seacord
Status: candidate
Language: C++
Submission Date: 19 May 2006
Operating System: cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*

Description

Buffer overflow by gets() if input is more than 80 characters.
From "Secure Coding in C and C++" by Robert C. Seacord.
Page 27, Figure 2-1

Flaws

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Have any comments on this test case? Please, send us an email.