Classic buffer overflow
|
| Author | Content |
|---|---|
| Skapare Mar 08, 2006 5:15 AM EDT |
This is classic buffer overflow. I think the title of the article perhaps was mistranslated. It would be better like "Writing Beyond a Buffer" or "Writing Outside a Buffer". It is obvious to me that English is not the author's first language. While it is probably still the case that many programmers do need to be better educated about this kind of problem, this article isn't really providing anything new, and it certainly doesn't get into any details that could help programmers. The one thing programmers should always do is be certain that any code which stores bytes into their buffers is carefully restricted so it is never possible under any conditions to write to the buffer with indexes less than zero or greater that one less than the size of the buffer. Obviously, avoiding the few standard C functions that offer no such protection, is the first step. Then, making sure the code that is written does the right things, is next. |
Posting in this forum is limited to members of the group: [ForumMods, SITEADMINS, MEMBERS.]
Becoming a member of LXer is easy and free. Join Us!