SourceForge has been redesigned. Learn more.
Close

#18 Unsafe Handling of Received Data

v0.0.*
open
Server (7)
7
2005-06-22
2005-06-22
No

When arguments received from the clients need to be
converted to integers, the server does this blindly
without ensuring that it is possible, or catching the
exception. A malformed client or a malicious user could
send a message with incorrect arguments that would
cause a server side exception.

Discussion


Log in to post a comment.