National Institute of Standards and Technology
Package illustrating a test case

Test case 149840

Description

This test case reads the taint source. If it contains a non-alphanumeric value, the source taint buffer is set to NULL. Subsequently, strcpy is called with the source taint buffer as this source. This causes a null pointer dereference.
Metadata
- Base program: Subversion
- Source Taint: SHARED_MEMORY
- Data Type: SIMPLE
- Data Flow: INDEX_ALIAS_50
- Control Flow: SET_JUMP_LONG_JUMP

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.