Bugtraq mailing list archives

Re: buffer overflow in dbadmin

From: duke () VIPER NET AU (duke)
Date: Fri, 9 Oct 1998 03:02:53 +0000

hi,

dbadmin.c:    strcpy(op_temp,curField->name);
dbadmin.c:      strcat(rec_new,curField->name);


both op_temp and rec_new are malloc()'d so they are safe enough. dbadmin
still looks exploitable however from:

    strcat(qbuf,thetable);

qbuf is not malloc'd but is a global variable.

-- Mark

Current thread:

buffer overflow in dbadmin NACS Security Administrator (Oct 07)
- <Possible follow-ups>
- Re: buffer overflow in dbadmin duke (Oct 08)