SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Test Suite #59: C++ Test Suite for Source Code Analyzer - weakness suppresion

Results: 14 test cases.

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
21962010-11-23C++Source CodeAccepted This test case shows debugging code is left in the programCWE-489: Leftover Debug Code
Bad test case
20622007-12-28C++Source CodeAccepted The test case shows a Heap Overflow by trying to insert out of ...CWE-122: Heap-based Buffer Overflow
Bad test case
20542007-12-17C++Source CodeAccepted Created short is not deleted after use.CWE-401: Improper Release of Memory Before Removing Last Reference ('Memory Leak')
Bad test case
20432007-12-11C++Source CodeAccepted The test cases shows hard-coded passwords is used.CWE-259: Use of Hard-coded Password
Bad test case
20282007-11-29C++Source CodeAccepted A software system that accepts and executes input in the form of ...CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Bad test case
20132007-10-15C++Source CodeAccepted The test case shows a resource injection.CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
19932007-07-13C++Source CodeAccepted The pointer p is dereferenced even though the value is null.CWE-476: NULL Pointer Dereference
Bad test case
19832007-07-13C++Source CodeAccepted The test case has a SQL Injection weakness.CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
19792007-07-13C++Source CodeAccepted By using a wrong pointer type, the program will output a ...CWE-468: Incorrect Pointer Scaling
Bad test case
19772007-07-13C++Source CodeCandidate Integer is not initiated before useCWE-457: Use of Uninitialized Variable
Bad test case
19712007-07-13C++Source CodeAccepted user can input more then the max number of characters causing a ...CWE-121: Stack-based Buffer Overflow
Bad test case
19652007-07-13C++Source CodeAccepted The test case is a basic CGI source code which allows Cross-Site ...CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
19542007-07-13C++Source CodeCandidate users can add the arguments -debug -root to take advantage of ...CWE-489: Leftover Debug Code
Bad test case
17392006-08-21C++Source CodeAccepted Test of tool ability to identify an unchecked error condition.CWE-391: Unchecked Error Condition
Bad test case