Re: NSCA HTTPD (for Windows) bug.

[njs3 () DOC IC AC UK (Niall Smart)]

On May 8,  1:33am, Renos wrote:
} Subject: NSCA HTTPD (for Windows) bug.

> Since the server is not for commercial use the bug doesn't seem to be
> serious. A fix would be to re-define MAX_STRING_LEN to a much bigger
> number. As far as I know the Server Administrator cannot re-define
> MAX_STRING_LEN.

Increasing MAX_STRING_LEN is *not* a fix; it is necessary to add
bounds checking code to the parser to ensure that the buffer cannot
be overflowed.

Niall