Revision as of 07:49, 27 March 2004 edit Enigmasoldier (talk \| contribs) 123 edits Added Link ← Previous edit		Revision as of 19:00, 7 April 2004 edit undo 62.134.120.103 (talk) No edit summary Next edit →
Line 5: Format bugs arise because C's argument passing conventions are type-unsafe. In particular, the <code>varargs</code> mechanism allows [[Subprogram\|functions]] to accept any number of arguments (e.g. <code>printf</code>) by "popping" as many [[Argument\|arguments]] off the call [[Stack_(computing)\|stack]] as they wish, trusting the early arguments to indicate how many additional arguments are to be popped, and of what types. ===See ~~Also=~~also== [[fprintf]] [[sprintf]] [[snprintf]] ==References== ===External Links===▼ [[Tobias Klein]]: ''Buffer Overflows und Format-String-Schwachstellen'', Dpunkt Verlag, ISBN 3-89864-192-9 ▲===External ~~Links=~~links== [http://teso.scene.at/articles/formatstring/ Exploiting Format String Vulnerabilities] [http://www.securityfocus.com/archive/1/70552 Excellent Paper on Exploiting Format String Bugs]

Uncontrolled format string: Difference between revisions