National Institute of Standards and Technology
Package illustrating a test case

Test case 93522

Description

CWE: 259 Use of Hard-coded Password
BadSource: Use a hardcoded password
GoodSource: Read the password from the console
Sink:
BadSink : Authenticate the user using LogonUserA()
Flow Variant: 41 Data flow: data passed as an argument from one function to another in the same source file

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.