Test case 1486

Type: source code
Pairs: 1487-v1.0.0
State: bad
Author: Robert C. Seacord
Status: candidate
Language: C++
Submission Date: 19 May 2006

Description

Buffer overflow if the input is not validated. Every operation may write outside the bound of the statically allocated character array.
From "Secure Coding in C and C++" by Robert C. Seacord.
Page 28, Figure 2-2

Flaws

CWE-121 Stack-based Buffer Overflow

Test Suites

CANDIDATE Source Code Analysis Tool Functional Specification Test Suite

Have any comments on this test case? Please, send us an email.