FREE Subscription to Dr. Dobb’s Digest: Same Great Content, New Digital Edition
Site Archive (Complete)
ABOUT US | CONTACT | ADVERTISE | SUBSCRIBE | SOURCE CODE | NEWSLETTERS | RESOURCES | BLOGS | PODCASTS | GO PARALLEL
C++ Blog: Security Beyond C
C++
void main(void)

Calls, Returns and In-Between.

by Kevin Carlson
SELECTIVE IGNORANCE

Finding the Signal in the Noise

by Andrew Koenig
February 13, 2007

Security Beyond C

By now, most C/C++ programmers are familiar with the dangers of allowing untrusted user input into a format string. But just because languages like Ruby, Perl, Python and Java are less susceptible to buffer overflow doesn't mean that format strings in these languages are safe. You should know the risks in order to minimize the danger. Hal Burch and Robert Seacord lay it all out in "Programming Language Format String Vulnerabilities."

Posted by Kevin Carlson at 01:06 PM  Permalink



 
INFO-LINK


| All Feeds
© 2009 TechWeb, Privacy Policy, Terms of Service, United Business Media LLC
Comments about the web site: webmaster@ddj.com