National Institute of Standards and Technology
Package illustrating a test case

Test case 154718

Description

This weakness takes in an integer and string "int string" where the integer is the size of the array to sort for timing and the string contains the value that is acted upon by the treads, passed as a global static class. A divide by zero error occurs when the string starts with 'A' and the array size is significantly large. In practice the benign sort values are <50 and exploit are >5000000 to achieve (essentially) guaranteed effects.
Metadata
- Base program: Apache Lenya
- Source Taint: ENVIRONMENT_VARIABLE
- Data Type: SIMPLE
- Data Flow: ADDRESS_AS_FUNCTION_RETURN_VALUE
- Control Flow: INTERPROCEDURAL_10

Flaws

Test Suites

Have any comments on this test case? Please, send us an email.