Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#18 Unsafe Handling of Received Data

v0.0.*
open
Server (7)
7
2005-06-22
2005-06-22
Daniel Bickett
No

When arguments received from the clients need to be
converted to integers, the server does this blindly
without ensuring that it is possible, or catching the
exception. A malformed client or a malicious user could
send a message with incorrect arguments that would
cause a server side exception.

Discussion