...
This rule appears in the C++ Secure Coding Standard as FIO30-CPP. Exclude user input from format strings.
Related
...
Vulnerabilities
Search for vulnerabilities resulting from the violation of this rule on the CERT website.
Related Guidelines
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="d7aa9127b323746d-5a05692d-4e824ed0-8eb19e13-0f76a70be4d313ddd4e30918"><ac:plain-text-body><![CDATA[ | [[MITRE 2009 | AA. Bibliography#MITRE 09]] | [CWE-134 | http://cwe.mitre.org/data/definitions/134.html] "Uncontrolled Format String" | ]]></ac:plain-text-body></ac:structured-macro> |
...
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="d6329e2e020cf57e-2e4be497-4fcd4e43-93fc960f-0e99c58e7cb63ab889c93896"><ac:plain-text-body><![CDATA[ | [[API 2006 | AA. Bibliography#API 06]] | [Class Formatter | http://java.sun.com/javase/6/docs/api/java/util/Formatter.html] | ]]></ac:plain-text-body></ac:structured-macro> |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="f72774c7fda03f2d-8069e906-489a47b6-8381a518-61a9da638afc34452fc5537c"><ac:plain-text-body><![CDATA[ | [[Seacord 2005 | AA. Bibliography#Seacord 05]] | Chapter 6, Formatted Output | ]]></ac:plain-text-body></ac:structured-macro> |
...