Secure Coding in C and C++, Second Edition

Chapter 3. Pointer Subterfuge

with Rob Murawski¹

1. Robert Murawski is a member of the technical staff in the CERT Program of Carnegie Mellon’s Software Engineering Institute (SEI).

Tush! tush! fear boys with bugs.

—William Shakespeare, The Taming of the Shrew, act 1, scene 2

Pointer subterfuge is a general term for exploits that modify a pointer’s value [Pincus 2004]. C and C++ differentiate between pointers to objects and pointers to functions. The type of a pointer to void or a pointer to an object type is called an object pointer type. The type of a pointer that can designate a function is called a function pointer type. A pointer to objects of type T is referred to as a “pointer to T.” C++ also defines a pointer to member type, which is ...

Get Secure Coding in C and C++, Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Secure Coding in C and C++, Second Edition by

Chapter 3. Pointer Subterfuge

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly