Test case 149193

Deprecated test case

This version contains mistakes, making it deprecated. Deprecated test cases should not be used for new work. However, They remain in the SARD as a reference to redo previous work. The latest version of this test case is available here.

Old Test Case ID: 2009
Type: source code
State: bad
Author: Robert C. Seacord
Status: deprecated
Language: C
Submission Date: 09 Oct 2007

Description

Buffer overflow if the input is not validated. Every operation may write outside the bound of the statically allocated character array. From \"Secure Coding in C and C++\" by Robert C. Seacord. Page 28, Figure 2-2.

Flaws

CWE-121 Stack-based Buffer Overflow

Test Suites

C Test Suite for Source Code Analyzer v2 - Vulnerable
C Test Suite for Source Code Analyzer - weakness

Have any comments on this test case? Please, send us an email.