National Institute of Standards and Technology
Package illustrating a test case

Test case 233847

Description

CWE: 122 Heap Based Buffer Overflow
BadSource: Initialize data as a large string
GoodSource: Initialize data as a small string
BadSink : Copy data to string using snprintf
Flow Variant: 82 Data flow: data passed in a parameter to an virtual method called via a pointer

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.