SAMATE Logo NIST Logo The SAMATE Project Department of Homeland Security
Downloads:  Download this Test Case #47573

Back to the previous page... Back to the previous page

Test Case IDDeprecated47573
Bad / Good / MixedMixedMixed test case
Test suite: 68  
Added bySAMATE Team Staff
Type of test caseSource Code
Input string
Expected Output
Submission date2011-04-08
DescriptionCWE: 78 OS Command Injection
BadSource: listen_socket Read data using a listen socket (server side)
GoodSource: Benign input
Sink: w32spawnvp
BadSink : execute command with wspawnvp
Flow Variant: 54 Data flow: data passed as an argument from one function through three others to a fifth; all five functions are in different source files

There is 1 comment
Have any comments on this test case? Please, .







File Contains:
CWE-078: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') on line(s): 65