CWE-234: Failure to Handle Missing Parameter
2015-06-25 20:41
375 查看
http://cwe.mitre.org/data/definitions/234.html
Example 1
(Bad Code)
Example Languages:
C and C++
foo_funct(one, two);...
void foo_funct(int one, int two, int three) {
printf("1) %d\n2) %d\n3) %d\n", one, two, three);
}
This can be exploited to disclose information with no work whatsoever.In fact, each time this function is run, it will print out the next 4bytes on the stack after the two numbers sent to it.
Example 1
(Bad Code)
Example Languages:
C and C++
foo_funct(one, two);...
void foo_funct(int one, int two, int three) {
printf("1) %d\n2) %d\n3) %d\n", one, two, three);
}
This can be exploited to disclose information with no work whatsoever.In fact, each time this function is run, it will print out the next 4bytes on the stack after the two numbers sent to it.
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- ural 1017 Staircases
- Unable to execute dex: Multiple dex files define Lcom/kenai/jbosh/AbstractAttr
- Rails学习总结(2)
- Execution failed for task ': :dexDebug'
- linux进程(fork/vfork)与wait/waitpid
- 最严谨的校验email地址的正则表达式
- Leetcode 217 Contains Duplicate
- 利用CodeIgniter中的Email类发邮件
- Cygwin运行nutch报错:Failed to set permissions of path
- INSTALL_PARSE_FAILED_INCONSISTENT_CERTIFICATES错误解决方法
- token in rails
- Factorial Trailing Zeroes -- leetcode
- layout布局文件Main.axml打开时出错 : 未将引用对象实例化
- Contains Duplicate III —— LeetCode
- [原]模型选择之AIC与BIC
- [Leetcode]-containsNearbyDuplicate
- 深度学习(人工智能)
- Python 使用urllib2 发送http请求 报错503 service unavailable问题
- 服务器RAID类型解析
- Filter及FilterChain的使用详解