SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Test Suite #47: C Test Suite for Source Code Analyzer - weakness suppresion (deprecated)

Results: 21 test cases in 2 pages. Pages: 1 2
Go to page:

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
22002010-11-23CSource CodeDeprecated Attempt to return a pointer to memory that has been freed. This ...CWE-416: Use After Free
Bad test case
21992010-11-23CSource CodeDeprecated This test case shows a block of memory is freed twice. This ...CWE-415: Double Free
Bad test case
21932010-11-17CSource CodeDeprecated This test case shows a null pointer is dereferenced.CWE-476: NULL Pointer Dereference
Bad test case
21092009-10-01CSource CodeDeprecated The test cases implements CVE-2002-1869: Don't check if you canwCWE-412: Unrestricted Externally Accessible Lock
Bad test case
20192007-11-26CSource CodeDeprecated Using the value of an unitialized variable is not safe. (from ...CWE-457: Use of Uninitialized Variable
Bad test case
19282007-03-05CSource CodeDeprecated Unchecked error condition; if we don't check the return of ...CWE-391: Unchecked Error Condition
Bad test case
18972007-03-01CSource CodeDeprecated The test case shows a resource injection.CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
18852007-03-01CSource CodeDeprecated The test case exposes an OS Command Injection.CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Bad test case
18652007-03-01CSource CodeDeprecated The test case shows how it is easy to get a buffer overflow if a ...CWE-251: Often Misused: String Management
Bad test case
18612007-03-01CSource CodeDeprecated The test case expose a leftover debug code. Basically developer ...CWE-489: Leftover Debug Code
Bad test case
18492007-03-01CSource CodeDeprecated This test case shows an improper null termination; fread don't ...CWE-170: Improper Null Termination
Bad test case
18102007-01-17CSource CodeDeprecated . The use of a hard-coded password increases the possibility ofpCWE-259: Use of Hard-coded Password
Bad test case
17962007-01-11CSource CodeDeprecated The SQL Injection is possible because the arguments are not ...CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
17942007-01-11CSource CodeDeprecated This Cross-Site Scripting example shows how a CGI program in C takestCWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
17822007-01-08CSource CodeDeprecated In C and C++, one may often accidentally refer to the wrong ...CWE-468: Incorrect Pointer Scaling
Bad test case
17372006-08-17CSource CodeDeprecated Test if tool can detect a heap inspection vulnerability.CWE-244: Improper Clearing of Heap Memory Before Release ('Heap Inspection')
Bad test case
16112006-06-22CSource CodeDeprecated An strcpy overflows a heap buffer.CWE-122: Heap-based Buffer Overflow
Bad test case
15852006-06-22CSource CodeDeprecated malloc'd data is never freed and all pointers to the data are lost.CWE-401: Improper Release of Memory Before Removing Last Reference ('Memory Leak')
Bad test case
15632006-06-22CSource CodeDeprecated gets is never safe for untrusted input due to lack of buffer ...CWE-121: Stack-based Buffer Overflow
Bad test case
1022006-01-04CSource CodeDeprecated A file is accessed multiple times by name in a publically accessibledCWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition
Bad test case
1 2
Total of selected test cases: 21
Total pages: 2