Test case 1498

Type: source code
State: good
Author: Robert C. Seacord
Status: candidate
Language: C++
Submission Date: 19 May 2006

Description

Extracting object from cin to std::string object. This example is quite safe because if there is a buffer overflow, C++ will throw a out_of_range exception.
From "Secure Coding in C and C++" by Robert C. Seacord.
Page 61, Figure 2-33

Flaws

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Have any comments on this test case? Please, send us an email.