Call to a potentially insecure function that should be reviewed

ID

c.miscellaneous.interesting_api_calls

Severity

low

Resource

Miscellaneous

Language

C / C++

Description

Call to the potentially insecure function $FUN. Review the call to check for pathways allowing access from untrusted input.

Rationale

Call to the potentially insecure function $FUN. Review the call to check for pathways allowing access from untrusted input.

The following code illustrates a vulnerable pattern detected by this rule:

void drop_priv_perm()
{
	// VULNERABLE: Call to a potentially insecure function that should be reviewed
	setuid(getuid());
}

Remediation

Follow secure coding practices and review the references below for detailed remediation guidance.

Configuration

This detector does not need any configuration.

References