SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security

View/Download Test Cases

Downloads:  Download the selected Test Cases Download these 14 test cases Download all the test cases on the page  Download the manifest  Download all the test cases in the SARD

Test Suite #59: C++ Test Suite for Source Code Analyzer - weakness suppresion

Results: 14 test cases.

Select Test Case ID(up) Submission Date Language Type of Artifact Status Description Weakness Bad
Good
Mixed
21962010-11-23C++Source CodeAccepted This test case shows debugging code is left in the programCWE-489: Leftover Debug Code
Bad test case
20622007-12-28C++Source CodeAccepted The test case shows a Heap Overflow by trying to insert out of ...CWE-122: Heap-based Buffer Overflow
Bad test case
20542007-12-17C++Source CodeAccepted Created short is not deleted after use.CWE-401: Improper Release of Memory Before Removing Last Reference ('Memory Leak')
Bad test case
20432007-12-11C++Source CodeAccepted The test cases shows hard-coded passwords is used.CWE-259: Use of Hard-coded Password
Bad test case
20282007-11-29C++Source CodeAccepted A software system that accepts and executes input in the form of ...CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Bad test case
20132007-10-15C++Source CodeAccepted The test case shows a resource injection.CWE-099: Improper Control of Resource Identifiers ('Resource Injection')
Bad test case
19932007-07-13C++Source CodeAccepted The pointer p is dereferenced even though the value is null.CWE-476: NULL Pointer Dereference
Bad test case
19832007-07-13C++Source CodeAccepted The test case has a SQL Injection weakness.CWE-089: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Bad test case
19792007-07-13C++Source CodeAccepted By using a wrong pointer type, the program will output a ...CWE-468: Incorrect Pointer Scaling
Bad test case
19772007-07-13C++Source CodeCandidate Integer is not initiated before useCWE-457: Use of Uninitialized Variable
Bad test case
19712007-07-13C++Source CodeAccepted user can input more then the max number of characters causing a ...CWE-121: Stack-based Buffer Overflow
Bad test case
19652007-07-13C++Source CodeAccepted The test case is a basic CGI source code which allows Cross-Site ...CWE-079: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Bad test case
19542007-07-13C++Source CodeCandidate users can add the arguments -debug -root to take advantage of ...CWE-489: Leftover Debug Code
Bad test case
17392006-08-21C++Source CodeAccepted Test of tool ability to identify an unchecked error condition.CWE-391: Unchecked Error Condition
Bad test case