SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Test Suite #17: CANDIDATE Source Code Analysis Tool Functional Specification Test Suite

Results: 34 test cases in 2 pages. Pages: 1 2
Go to page:

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
15272006-06-09C++Source CodeCandidate A C++ array is not deleted correctly, which could lead to memory ...CWE-401: Improper Release of Memory Before Removing Last Reference ('Memory Leak')
Bad test case
15222006-06-09C++Source CodeCandidate A null pointer is dereferenced. . . . These test cases were ...CWE-476: NULL Pointer Dereference
Bad test case
14912006-05-19CSource CodeCandidate Null-termination defect. There is no place allocated for the ...CWE-170: Improper Null Termination
Bad test case
14862006-05-19CSource CodeCandidate Buffer overflow if the input is not validated. Every operation ...CWE-121: Stack-based Buffer Overflow
Bad test case
1152005-12-27CSource CodeCandidate Buffer Overflow. This code has been donated by MIT. This test ...CWE-121: Stack-based Buffer Overflow
Bad test case
1022006-01-04CSource CodeDeprecated A file is accessed multiple times by name in a publically accessibledCWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
Bad test case
882006-01-03CSource CodeDeprecated An ad hoc gets without bounds checkes allows a stack buffer to ...CWE-121: Stack-based Buffer Overflow
Bad test case
732005-11-07CSource CodeDeprecated Sometimes an error is detected, and bad or no action is taken. (fromTCWE-391: Unchecked Error Condition
Bad test case
152005-10-21CSource CodeDeprecated A heap overflow condition is a buffer overflow, where the buffer ...CWE-122: Heap-based Buffer Overflow
Bad test case
132005-10-21CSource CodeCandidate Any condition where the attacker has the ability to write an ...CWE-123: Write-what-where Condition
Bad test case
112005-10-27CSource CodeDeprecated Command injection problems are a subset of injection problem, in ...CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Bad test case
102005-10-27CSource CodeDeprecated Format string problems occur when a user has the ability to ...CWE-134: Uncontrolled Format String
Bad test case
62005-10-26CSource CodeCandidate The use of heap allocated memory after it has been freed or ...CWE-416: Use After Free
Bad test case
42005-10-21CSource CodeCandidate Miscalculated null termination occurs when the placement of a ...CWE-170: Improper Null Termination
Bad test case
1 2
Total of selected test cases: 34
Total pages: 2