in the BasicAuthenticator constructor there is a buffer
overflow. m_pchEncodingScheme does not allocate
enough space to account the null terminator.
in BasicAuthenticator::buildCredential() the character
buffer credString does not allocate enough space to
contain the credential information.
Logged In: YES
user_id=1357631
Description of the Patch
SCTS: BUFFER OVERFLOWS IN BASIC AUTHENTICATOR CODE
Buffer overflows in basic authenticator code in the
BasicAuthenticator constructor there is a buffer overflow.
m_pchEncodingScheme does not allocate enough space to
account the null terminator in
BasicAuthenticator::buildCredential() the character buffer
credString does
not allocate enough space to contain the credential
information.
Short overview of how the patch works
/SyncMLConformanceTestSuite/Authentication
BasicAuthenticator.cpp
- Increase the size of the buffer m_pchEncodingScheme
Testing Performed:
Yes