| To: | pen-test@securityfocus.com |
|---|---|
| Subject: | Re: Format String Vulnerabilities |
| From: | andy.x.johnson@cummins.com |
| Date: | 18 May 2007 19:03:59 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | pentest-list2@consult.net |
| Delivered-to: | mailing list pen-test@securityfocus.com |
| Delivered-to: | moderator for pen-test@securityfocus.com |
| List-help: | <mailto:pen-test-help@securityfocus.com> |
| List-id: | <pen-test.list-id.securityfocus.com> |
| List-post: | <mailto:pen-test@securityfocus.com> |
| List-subscribe: | <mailto:pen-test-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:pen-test-unsubscribe@securityfocus.com> |
| Mailing-list: | contact pen-test-help@securityfocus.com; run by ezmlm |
| Resent-date: | Fri, 18 May 2007 13:18:05 -0600 (MDT) |
| Resent-from: | pen-test-return-1078484174@securityfocus.com |
| Resent-message-id: | <20070518191805.64503237852@outgoing3.securityfocus.com> |
| Resent-sender: | listbounce@securityfocus.com |
| Sender: | listbounce@securityfocus.com |
I can assume the string format function is using 'strcpy' to copy the format into a pointer. The easiest solution is to rewrite the code to use the bounds checking version 'strncpy'. This will keep the overflow from happening no matter where the pointer address is referenced on the stack. ------------------------------------------------------------------------ This List Sponsored by: Cenzic Are you using SPI, Watchfire or WhiteHat? Consider getting clear vision with Cenzic See HOW Now with our 20/20 program! http://www.cenzic.com/c/2020 ------------------------------------------------------------------------ |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | RE: Sneaking a peek on Wlan in airports, Erin Carroll |
|---|---|
| Next by Date: | RE:Legality of WEP cracking, scott |
| Previous by Thread: | Re: Format String Vulnerabilities, rajat swarup |
| Next by Thread: | Database pen-testing tools, Erin Carroll |
| Indexes: | [Date] [Thread] [Top] [All Lists] |