/* goodB2G() - use badsource and goodsink */ private void GoodB2G() { string password; password = ""; /* init password */ /* Read data using an outbound tcp connection */ { try { /* Read data using an outbound tcp connection */ using (TcpClient tcpConn = new TcpClient("host.example.org", 39544)) { /* read input from socket */ using (StreamReader sr = new StreamReader(tcpConn.GetStream())) { /* POTENTIAL FLAW: Read password using an outbound tcp connection */ password = sr.ReadLine(); } } } catch (IOException exceptIO) { IO.Logger.Log(NLog.LogLevel.Warn, "Error with stream reading", exceptIO); } } CWE319_Cleartext_Tx_Sensitive_Info__connect_tcp_SqlConnection_52b.GoodB2GSink(password); }