SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #1307

Back to the previous page... Back to the previous page

Test Case IDCandidate1307
Bad / Good / MixedBadBad test case
AuthorMIT
Associations
Good pair: 1308  
Test suite: 88  
Added byMIT
LanguageC
Type of test caseSource Code
Input string
Expected Output
Instructions
Submission date2006-02-09
DescriptiontTflag Buffer Underrun: CVE-2001-0653. From MIT benchmarks (models/sendmail/s6)

Due to a type casting side effect (assigning unsigned int to signed int), it is possible to write data to a negative index of a buffer.

Bad file: tTflag-bad.c
Bad line number: 170
To fix, declare indexes as unsigned int on line 122.

Taxonomy Classification: 0163400200210133011411

WRITE/READ = write
WHICH BOUND = lower
DATA TYPE = unsigned char
MEMORY LOCATION = bss
SCOPE = inter-file/global
CONTAINER = no
POINTER = no
INDEX COMPLEXITY = linear expr
ADDRESS COMPLEXITY = constant
LENGTH COMPLEXITY = N/A
ADDRESS ALIAS = yes, two levels
INDEX ALIAS = yes, one level
LOCAL CONTROL FLOW = none
SECONDARY CONTROL FLOW = if
LOOP STRUCTURE = while
LOOP COMPLEXITY = two
ASYNCHRONY = no
TAINT = argc/argv
RUNTIME ENV. DEPENDENCE = yes
MAGNITUDE = varies
CONTINUOUS/DISCRETE = continuous
SIGNEDNESS = yes
File(s)
Flaw

There are no comments
Have any comments on this test case? Please, .