You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
the function snprintf use an external and controllable argument like argv[0], that is very dangerous. Because the argument is just a format string, it contains some symbols as %n %p %s are very dangerous. The user can read or write the stack segment by using them.
code
snprintf(filename,maxlength,argv[0],framecounter);
if (!file_exists(filename)) {
stop_searching++;
continue;
}
example
use the command ./flif -e sig%s.%s.png test.flif
the error will be Segmentation fault
thanks for your time.
from: Eagleye team Cheng Renfeng. Zhou Kai. Cheng Xiaoyan.
The text was updated successfully, but these errors were encountered:
hi,
issue
the function snprintf use an external and controllable argument like argv[0], that is very dangerous. Because the argument is just a format string, it contains some symbols as %n %p %s are very dangerous. The user can read or write the stack segment by using them.
code
example
use the command
./flif -e sig%s.%s.png test.flifthe error will be
Segmentation faultthanks for your time.
from: Eagleye team
Cheng Renfeng. Zhou Kai. Cheng Xiaoyan.
The text was updated successfully, but these errors were encountered: