Talk:Reviewing Code for Buffer Overruns and Overflows

From OWASP
Revision as of 23:25, 17 January 2007 by TBeattie (talk | contribs) (Please remove statement about %n)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Under "Walking the stack", the statement "the %n directive in printf()... takes an int* and writes the number of bytes so far to that location" is incorrect. "%n" is defined for the sscanf() function, but not for printf()... unless somebody knows of a non-standard implementation of C which does behave in this way, in which case that implementation should be identified.

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:Reviewing_Code_for_Buffer_Overruns_and_Overflows&oldid=15519"