Juliet C/C++ 1.0 Test suite #25
DownloadDescription
A collection of test cases in the C/C++ language. It contains examples for 116 different CWEs. This software is not subject to copyright protection and is in the public domain. NIST assumes no responsibility whatsoever for its use by other parties, and makes no guaranties, expressed or implied, about its quality, reliability, or any other characteristic. All documents related to the Juliet Test Suite can be found at the documents page.
Documentation
Displaying test cases 20326 - 20350 of 45309 in total
-
CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 17 Control flow: for loops
-
CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 18 Control flow: goto statements
-
CWE: 222 Truncation of Security Relevant Information Sinks: GoodSink: Log the complete username BadSink : Username is truncated before being logged Flow Variant: 19 Control flow: Dead code after a return
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 01 Baseline
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 02 Control flow: if(1) and if(0)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 03 Control flow: if(5==5) and if(5!=5)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 04 Control flow: if(static_const_t) and if(static_const_f)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 05 Control flow: if(static_t) and if(static_f)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 06 Control flow: if(static_const_five==5) and if(static_const_five!=5)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 07 Control flow: if(static_five==5) and if(static_five!=5)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 08 Control flow: if(static_returns_t()) and if(static_returns_f())
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 09 Control flow: if(global_const_t) and if(global_const_f)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 10 Control flow: if(global_t) and if(global_f)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 11 Control flow: if(global_returns_t()) and if(global_returns_f())
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 12 Control flow: if(global_returns_t_or_f())
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 13 Control flow: if(global_const_five==5) and if(global_const_five!=5)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 14 Control flow: if(global_five==5) and if(global_five!=5)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 15 Control flow: switch(6)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 16 Control flow: while(1) and while(0)
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 17 Control flow: for loops
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 18 Control flow: goto statements
-
CWE: 223 Omission of Security Relevant Information Sinks: GoodSink: Log the username BadSink : Username is not logged Flow Variant: 19 Control flow: Dead code after a return
-
CWE: 226 Sensitive Information Uncleared Before Release Sinks: w32alloca GoodSink: Clear the password buffer before releasing the memory from the stack BadSink : Release password from the stack without first clearing the buffer Flow Variant: 01 Baseline
-
CWE: 226 Sensitive Information Uncleared Before Release Sinks: w32alloca GoodSink: Clear the password buffer before releasing the memory from the stack BadSink : Release password from the stack without first clearing the buffer Flow Variant: 02 Control flow: if(1) and if(0)
-
CWE: 226 Sensitive Information Uncleared Before Release Sinks: w32alloca GoodSink: Clear the password buffer before releasing the memory from the stack BadSink : Release password from the stack without first clearing the buffer Flow Variant: 03 Control flow: if(5==5) and if(5!=5)