I am new somewhat new to C and finding vulnerabilities in programs. And I think I found vulnerable code if it is possible to exploit the recv() function in C.
Like is it possible to exploit it even if the parameter for size is defined? Like:
recv(sock, buffer, sizeof(buffer) - 1, 0)
Foxyy
Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts
Exploit Recv In C
Started by
Foxy999
, Jun 15 2010 11:21 AM
1 reply to this topic
#2
Jeremywilms
-
- Members
-
- 40 posts
Private First Class
Posted 16 July 2010 - 06:28 AM
If the argument which describes the size of the buffer is equal to or less than the size of the buffer, then the operation is entirely safe as far as I can see.
Sometimes the recv api can be poorly handled and cause a buffer-overflow but don't count on it.
Sometimes the recv api can be poorly handled and cause a buffer-overflow but don't count on it.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
