National Institute of Standards and Technology
Package illustrating a test case

Test case 93544

Description

CWE: 259 Use of Hard-coded Password
BadSource: Use a hardcoded password
GoodSource: Read the password from the console
Sinks:
BadSink : Authenticate the user using LogonUserA()
Flow Variant: 83 Data flow: data passed to class constructor and destructor by declaring the class object on the stack

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.