Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re: buffer overflow in dbadmin
From: duke () VIPER NET AU (duke)
Date: Fri, 9 Oct 1998 03:02:53 +0000




hi,

dbadmin.c:    strcpy(op_temp,curField->name);
dbadmin.c:      strcat(rec_new,curField->name);

both op_temp and rec_new are malloc()'d so they are safe enough. dbadmin
still looks exploitable however from:

    strcat(qbuf,thetable);

qbuf is not malloc'd but is a global variable.

-- Mark



  By Date           By Thread  

Current thread:
  • buffer overflow in dbadmin NACS Security Administrator (Oct 08)
    • <Possible follow-ups>
    • Re: buffer overflow in dbadmin duke (Oct 09)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault