[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Q:How can I determine if an if is up in C/C++ only?
- To: mulix <mulix(at-nospam)actcom.co.il>
- Subject: Re: Q:How can I determine if an if is up in C/C++ only?
- From: Gilad Ben-Yossef <gilad(at-nospam)benyossef.com>
- Date: Fri, 15 Dec 2000 11:59:11 +0200
- CC: linux-il(at-nospam)linux.org.il
- Delivered-To: linux.org.il-linux-il@linux.org.il
- References: <3A387F45.1A9F2C0B@internet-zahav.net> <3A391F17.1070509@benyossef.com> <3A39430F.EFBA102F@actcom.co.il>
- Sender: linux-il-bounce(at-nospam)cs.huji.ac.il
- User-Agent: Mozilla/5.0 (X11; U; Linux 2.2.14-5.0 i686; en-US; m18) Gecko/20001107 Netscape6/6.0
mulix wrote:
> Gilad Ben-Yossef wrote:
>
> <ifstat source snipped>
>
>> strcpy(ifr.ifr_name, argv[1]);
>
>
> this is broken. ifr.ifr_name is a char array of size IFNAMSIZ (which is
> defined to 16 in net/if.h- not a very long buffer). if the user supplies
> a long enough argv[1], you have your classic buffer overflow here,
> easily overwriting EIP.
Ha! You're onto my back door! ;-)))))
Gilad.
=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il