SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #2034

Back to the previous page... Back to the previous page

Test Case IDAccepted2034
Bad / Good / MixedBadBad test case
Test suite: 57  
Added byMichael Koo
Type of test caseSource Code
Input string
Expected Output
Submission date2007-12-03
DescriptionA software system that accepts and executes input in the form of operating system commands (e.g. system()) could allow an attacker with lesser privileges than the target software to execute commands with the elevated privileges of the executing process.

There are no comments
Have any comments on this test case? Please, .

File Contains:
CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') on line(s): 0, 23, 24