Closed szsam closed 7 months ago
name array should allocate space for the null terminator. Also, need to check if client->name has enough space for strcpy.
I suggest assigning a CVE for this buffer overflow vulnerability.
This server is usually not used in the standard environment. I don't think CVE is required.
name array should allocate space for the null terminator. Also, need to check if client->name has enough space for strcpy.
I suggest assigning a CVE for this buffer overflow vulnerability.