search

shahshalin91 / rough-auditing-tool-for-security

Automatically exported from code.google.com/p/rough-auditing-tool-for-security
GNU General Public License v2.0
0 stars 0 forks source link

Bad serialization of type in XML format #2

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago 
What steps will reproduce the problem?
1. Generate a vulnerability which only concerns a buffer overflow (strncpy)
2. The type tag is not serialized at all in the output 

Suggested fix in method build_xml_vulnerability of file report.c

Original issue reported on code.google.com by jpshem...@gmail.com on 3 May 2012 at 9:19

Attachments: