perexg
commented
7 months ago This server is usually not used in the standard environment. I don't think CVE is required.
Closed szsam closed 7 months ago
perexg
commented
7 months ago This server is usually not used in the standard environment. I don't think CVE is required.
name array should allocate space for the null terminator. Also, need to check if client->name has enough space for strcpy.
I suggest assigning a CVE for this buffer overflow vulnerability.