...
| Include Page | ||||
|---|---|---|---|---|
|
...
Risk Assessment
Modifying string literals can lead to abnormal program termination and results in undefined behavior that can be used in denial-of-service attacks.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level | |
|---|---|---|---|---|---|---|
STR30-C | ||||||
Component | Value | |||||
Severity | 1 (low) | Likelihood | 3 (likely) Remediation cost | 3 (low) | P9 | L2 |
References
- ISO/IEC 9899-1999 Section 6.4.5 String literals
- Summit 95 comp.lang.c FAQ list - Question 1.32
- Plum 91 Topic: 1.26 strings - string literals