Downloads:
Back to the previous page
| Test Case ID |  149241 |
| Bad / Good / Mixed | Bad |
| Author | NIST, SecureSoftware, Alexander Hoole, Aurelien Delaitre |
| Associations | Good pair: 149242 Replacing: 149205 Test suite: 100 |
| Added by | Charles Oliveira |
| Language | C |
| Type of test case | Source Code |
| Input string | |
| Expected Output | |
| Instructions | gcc -Wall -g -O0 -std=gnu99 -o os_cmd_injection_basic-bad os_cmd_injection_basic-bad.c |
| Submission date | 2015-06-19 |
| Description | Command injection problems are a subset of injection problem, in which the process is tricked into calling external processes of the attackers choice through the injection of control-plane data into the data plane. |
| File(s) |
|
| Flaw |
There are no comments
Have any comments on this test case? Please,
.
File Contains:
CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') on line(s): 51
CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') on line(s): 51