Use of Path Manipulation Function without Maximum-sized Buffer
Description The software invokes a function for normalizing paths or file names, but it provides an output buffer that is smaller than the maximum possible size, such as PATH_MAX. Extended DescriptionPassing an inadequately-sized output buffer to a path manipulation function can result in a buffer overflow. Such functions include realpath(), readlink(), PathAppend(), and others. Applicable PlatformsLanguage: CLanguage: C++ Time Of Introduction
Common Consequences
Detection MethodsNone Potential Mitigations
Relationships
Demonstrative ExamplesNone White Box DefinitionsA weakness where code path has:1. end statement that passes buffer to path manipulation function where the size of the buffer is smaller than expected by the path manipulation function Black Box Definitions None Taxynomy Mappings
References:None |