National Institute of Standards and Technology
Package illustrating a test case

Test case 154395

Description

This weakness takes in an integer and string "int string" where the integer is the size of the array to sort for timing and the string contains the value that is acted upon by the treads, stored in a global static variable. A divide by zero error occurs when the string starts with 'A' and the array size is significantly large. In practice the benign sort values are <50 and exploit are >5000000 to achieve (essentially) guaranteed effects.
Metadata
- Base program: Apache POI
- Source Taint: SOCKET
- Data Type: VOID_POINTER
- Data Flow: INDEX_ALIAS_1
- Control Flow: RECURSIVE

Flaws

Test Suites

Documentation

Have any comments on this test case? Please, send us an email.