s-macke
commented
9 years ago Thanks mft1. There might be other problems in the code as well.
Closed b4sic4lly closed 9 years ago
s-macke
commented
9 years ago Thanks mft1. There might be other problems in the code as well.
Hello,
I found that your cool program uses "strcat" for processing command line arguments. This can be abused to execute arbitrary code. I created a fork and changed the function to "strncat" including the buffer length to fix this issue.
sincerely mft1