Use of Potentially Dangerous Function
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-676: Use of Potentially Dangerous Function |
| Confidence Level | Low |
| Impact Level | High |
| Likelihood Level | Low |
Description#
Using ‘strcat’ or ‘strncat’ for string concatenation in C can cause buffer overflows if the destination buffer is not large enough. These functions do not reliably prevent writing past the end of the buffer, leading to unsafe memory writes.
Impact#
If exploited, a buffer overflow can allow attackers to crash the application, execute arbitrary code, or gain unauthorized access to system resources. This can result in data breaches, system compromise, or service disruptions.