SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Test Suite #57: C++ Test Suite for Source Code Analyzer - weakness

Results: 41 test cases in 3 pages. Pages: 1 2 3
Go to page:

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
20262007-11-29C++Source CodeAccepted Allowing user input to control resource identifiers may enable ...CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
20232007-11-29C++Source CodeAccepted Allowing user input to control resource identifiers may enable ...CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
20212007-11-28C++Source CodeAccepted Allowing user input to control resource identifiers may enable ...CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
20132007-10-15C++Source CodeAccepted The test case shows a resource injection.CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
19992007-07-13C++Source CodeAccepted Null Dereference in a Index Alias complexityCWE-476: NULL Pointer Dereference
Bad test case
19972007-07-13C++Source CodeAccepted The pointer p is dereferenced even though the value is null.CWE-476: NULL Pointer Dereference
Bad test case
19952007-07-13C++Source CodeAccepted The pointer is dereferenced even though the value is null in the ...CWE-476: NULL Pointer Dereference
Bad test case
19932007-07-13C++Source CodeAccepted The pointer p is dereferenced even though the value is null.CWE-476: NULL Pointer Dereference
Bad test case
19892007-07-13C++Source CodeAccepted The test case has a SQL Injection weakness in a array index ...CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
19872007-07-13C++Source CodeCandidate integer p is not initiated before its use in a for loopCWE-457: Use of Uninitialized Variable
Bad test case
19852007-07-13C++Source CodeAccepted The test case has a SQL Injection weakness in a Scope complexity.CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
19832007-07-13C++Source CodeAccepted The test case has a SQL Injection weakness.CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
19792007-07-13C++Source CodeAccepted By using a wrong pointer type, the program will output a ...CWE-468: Incorrect Pointer Scaling
Bad test case
19772007-07-13C++Source CodeCandidate Integer is not initiated before useCWE-457: Use of Uninitialized Variable
Bad test case
19752007-07-13C++Source CodeAccepted The test case is a basic CGI source code which allows Cross-Site ...CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
19732007-07-13C++Source CodeAccepted The test case is a basic CGI source code which allows Cross-Site ...CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
19712007-07-13C++Source CodeAccepted user can input more then the max number of characters causing a ...CWE-121: Stack-based Buffer Overflow
Bad test case
19672007-07-13C++Source CodeCandidate created objects are never destroyedCWE-401: Improper Release of Memory Before Removing Last Reference ('Memory Leak')
Bad test case
19652007-07-13C++Source CodeAccepted The test case is a basic CGI source code which allows Cross-Site ...CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
19542007-07-13C++Source CodeCandidate users can add the arguments -debug -root to take advantage of ...CWE-489: Leftover Debug Code
Bad test case
1 2 3
Total of selected test cases: 41
Total pages: 3