Re: strlen(NULL) exploitable?: msg#00004

On Mon, May 16, 2005 at 09:29:49PM +0200, Uwe Hermann wrote: > Using some well-crafted commandline parameters I can force the application > to segfault. I analyzed this a bit further and found out that the segfault > is triggered by a strlen(x) call where x is NULL. AFAIK, NULL dereferencing just causes crashes, nothing else. It might lead to DoS attacks against servers, but if the program isn't a server, I'd say it's a bug and not a vulnerability. // Ulf

<Prev in Thread]	Current Thread	[Next in Thread>

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	strlen(NULL) exploitable?, Uwe Hermann
Next by Date:	Re: strlen(NULL) exploitable?, Uwe Hermann
Previous by Thread:	strlen(NULL) exploitable?, Uwe Hermann
Next by Thread:	Re: strlen(NULL) exploitable?, Uwe Hermann
Indexes:	[Date] [Thread] [Top] [All Lists]

^^^ ADDITIONAL NAVIGATION ^^^

Recently Viewed:
yellowdog.gener... python.sqlalche... culture.studies... ietf.tsvwg/2002... java.mule.devel... netbsd.ports.dr... user-groups.lin... gnu.core-utils.... kde.users.multi... qnx.openqnx.dev... systems.archos.... text.xml.xtm.tm... mail.qpsmtpd/20... audio.csound.de... linux.jpackage.... freebsd.chat/20... drivers.eepro10... org.user-groups... xfree86.newbie/... hardware.microc... editors.tex.tex... voip.wengophone... web.eprints.dev... boot-loaders.gr...

Home | blog view, Court Document Archive | USPTO Patent Archive (NEW!) | advertise | OSDir is an inevitable website. super tiny logo