マルチバイト文字列長の誤った計算

Scope: Integrity, Confidentiality, Availability / Impact: Execute Unauthorized Code or Commands

Scope: Availability, Confidentiality / Impact: Read Memory; DoS: Crash, Exit, or Restart; DoS: Resource Consumption (CPU); DoS: Resource Consumption (Memory)

Scope: Confidentiality / Impact: Read Memory

Always verify the length of the string unit character.

Use length computing functions (e.g. strlen, wcslen, etc.) appropriately with their equivalent type (e.g.: byte, wchar_t, etc.)