Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Edited by NavBot (vkp)

...

Wiki Markup
\[[ISO/IEC 9899:1999|AA. References#ISO/IEC 9899-1999]\] Section 7.19.6, "Formatted input/output functions"
\[[ISO/IEC PDTR 24772|AA. References#ISO/IEC PDTR 24772]\] "RST Injection"
\[[MITRE 07|AA. References#MITRE 07]\] [CWE ID 134|http://cwe.mitre.org/data/definitions/134.html], "Uncontrolled Format String"
\[[Open Group 04|AA. References#Open Group 04]\] [{{syslog()}}|http://www.opengroup.org/onlinepubs/009695399/toc.htm]
\[[Seacord 05|AA. References#Seacord 05]\] Chapter 6, "Formatted Output"
\[[Viega 05|AA. References#Viega 05]\] Section 5.2.23, "Format string problem"

...

FIO19FIO00-C. Do not use fseek() and ftell() to compute the size of a fileTake care when creating format strings      09. Input Output (FIO)      FIO31-C. Do not open a file that is already open