...
Integer truncation errors can lead to buffer overflows and the execution of arbitrary code by an attacker.
Priority: P6 Level: L3
Severity: 3 (high)
Likelihood: 2 (probable)
Remediation cost: 1 (high)
References
- ISO/IEC 9899-1999 6.3 Conversions
- Seacord 05 Chapter 5 Integers
- Warren 02 Chapter 2 Basics