National Institute of Standards and Technology
Package illustrating a test case

Test case 69899

Description

CWE: 122 Heap Based Buffer Overflow
BadSource: Initialize data as a large string
GoodSource: Initialize data as a small string
Sinks: ncpy
BadSink : Copy data to string using wcsncpy
Flow Variant: 44 Data/control flow: data passed as an argument from one function to a function in the same source file called via a function pointer

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.