National Institute of Standards and Technology
Package illustrating a test case

Test case 93545


CWE: 259 Use of Hard-coded Password
BadSource: Use a hardcoded password
GoodSource: Read the password from the console
BadSink : Authenticate the user using LogonUserA()
Flow Variant: 84 Data flow: data passed to class constructor and destructor by declaring the class object on the heap and deleting it after use


Test Suites


Have any comments on this test case? Please, send us an email.