[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Re: Fwd: Re: Shell-Creation. A simulation Code

To: linux-india-programmers@xxxxxxxxxxxxxxxxxxxxx
Subject: Re: Fwd: Re: Shell-Creation. A simulation Code
From: "Binand Raj S." <binand@xxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 22 Aug 2000 20:38:50 +0530
Organization: Retort Software Pvt. Ltd.
References: <00082216305200.01178@pagladashu.lateralsoftware.com> <Pine.LNX.4.10.10008221643030.8551-100000@blue.csa.iisc.ernet.in> <20000822174256.B787@obiwan.cysphere.com>
Reply-to: binand@xxxxxxxxxxxxxxxxxxxxx

Kapil Bhalla wrote:

> #include<stdio.h>
> int  main()
> {
>         do {
>                         char *str;
>                 printf("command:>");
>                 gets(str);
>                 if (strcmp(str,"exit")==0)
>                         exit(0);
>                 system(str);
>           } while 1;
>                         exit(0);
> }
> This will not give any warning.

It might not, but it is sure a candidate for buffer overflows. gets()
reads into str, for which there is no memory allocated.

Seg faults and/or another exploit is the outcome. Plus the usual flaws
associated with system().

Binand

>

References:
- Fwd: Re: Shell-Creation. A simulation Code
  - From: Archan Paul
- Re: Fwd: Re: Shell-Creation. A simulation Code
  - From: Alex M Alex
- Re: Fwd: Re: Shell-Creation. A simulation Code
  - From: Kapil Bhalla

Prev by Subject: Re: Fwd: Re: Shell-Creation. A simulation Code
Next by Subject: Source of malloc
Previous by thread: Re: Fwd: Re: Shell-Creation. A simulation Code
Next by thread: zip file format
Index(es):
- Subject
- Thread