April 2011
Intermediate to advanced
500 pages
16h 12m
English
Content preview from Developer's Guide to Web Application Security
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
snprintf() and vsnprintf(), the maximum value should not be larger than the
destination variable’s size.
■
gets() and fgets() Read in a string of data from various file descriptors.
Both can possibly read in more data than the destination variable was allo-
cated to hold.The fgets() function requires a maximum limit to be speci-
fied; therefore, you must check that the fgets() limit is not larger than the
destination variable size.
■
getc(), fgetc(), getchar(), and read() Used in a loop have a potential
chance of reading in too much data if the loop does not properly stop
reading in data after the maximum destination variable size is reached.You
will need ...