...
The range is specified as starting from the beginning of the string and ending at the minimum of the string length or the max_fill constant value of 100.
...
Risk Assessment
Unchecked element access can lead to out-of-bounds reads and writes and write-anywhere exploits. These exploits can in turn lead to the execution of arbitrary code with the permissions of the vulnerable process.
Rule | Severity | Likelihood | Remediation Cost | Priority | Level | |
|---|---|---|---|---|---|---|
RES32-C | ||||||
Component | Value | |||||
Severity | 3 (high) | Likelihood | 3 (likely) Remediation cost | 1 (high) | P9 | L2 |
References
- Seacord 05 Chapter 2 Strings
- ISO/IEC 14882-2003 Section 21.3.4 basic_string element access