Download
| Alert*
Often Misused: String Management
Description Functions that manipulate strings encourage buffer overflows. Applicable PlatformsLanguage: CLanguage: C++ Common ConsequencesNone Detection MethodsNone Potential MitigationsNone Relationships
Demonstrative Examples (Details) White Box DefinitionsDefinition: A weakness where code path has:1. end statement that passes the string item to a string function2. start statement that malformed the string itemWhere "malformed" is defined through the following scenarios:1. changed to unexpected value2. incorrect syntactical structure Black Box Definitions None Taxynomy Mappings
References:None |