Juliet C/C++ 1.0 Test suite #25

Author: NSA Center for Assured Software
Language: C++
Size: 85 MB
Sha256sum: 9f95f3e5c6d3b6bd7e5f1197d8f75a1d9296f0f6d450d6a3d2cdd108733269dd
Number Of Test Cases: 45,309
Submission Date: 01 Dec 2010

Description

A collection of test cases in the C/C++ language. It contains examples for 116 different CWEs. This software is not subject to copyright protection and is in the public domain. NIST assumes no responsibility whatsoever for its use by other parties, and makes no guaranties, expressed or implied, about its quality, reliability, or any other characteristic. All documents related to the Juliet Test Suite can be found at the documents page.

Documentation

Juliet v1.0 for C and C++ cases.pdf

Displaying test cases 20301 - 20325 of 45309 in total

CWE-204

22572-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 11 Control flow: if(global_returns_t()) and if(global_returns_f())
CWE-204

22573-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 12 Control flow: if(global_returns_t_or_f())
CWE-204

22574-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 13 Control flow: if(global_const_five==5) and if(global_const_five!=5)
CWE-204

22575-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 14 Control flow: if(global_five==5) and if(global_five!=5)
CWE-204

22576-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 15 Control flow: switch(6)
CWE-204

22577-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 16 Control flow: while(1) and while(0)
CWE-204

22578-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 17 Control flow: for loops
CWE-204

22579-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 18 Control flow: goto statements
CWE-204

22580-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 204 Response Discrepancy Information Leak Sinks: GoodSink: Send a failed message, but don't provide user or password info BadSink : Responses leak information (invalid user, invalid password, etc) Flow Variant: 19 Control flow: Dead code after a return
CWE-222

22581-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 01 Baseline
CWE-222

22582-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 02 Control flow: if(1) and if(0)
CWE-222

22583-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 03 Control flow: if(5==5) and if(5!=5)
CWE-222

22584-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 04 Control flow: if(static_const_t) and if(static_const_f)
CWE-222

22585-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 05 Control flow: if(static_t) and if(static_f)
CWE-222

22586-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 06 Control flow: if(static_const_five==5) and if(static_const_five!=5)
CWE-222

22587-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 07 Control flow: if(static_five==5) and if(static_five!=5)
CWE-222

22588-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 08 Control flow: if(static_returns_t()) and if(static_returns_f())
CWE-222

22589-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 09 Control flow: if(global_const_t) and if(global_const_f)
CWE-222

22590-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 10 Control flow: if(global_t) and if(global_f)
CWE-222

22591-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 11 Control flow: if(global_returns_t()) and if(global_returns_f())
CWE-222

22592-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 12 Control flow: if(global_returns_t_or_f())
CWE-222

22593-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 13 Control flow: if(global_const_five==5) and if(global_const_five!=5)
CWE-222

22594-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 14 Control flow: if(global_five==5) and if(global_five!=5)
CWE-222

22595-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 15 Control flow: switch(6)
CWE-222

22596-v1.0.0

Added 15 years ago

deprecated

mixed

CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 16 Control flow: while(1) and while(0)

Results per page