Why is strncpy insecure?


Question

I am looking to find out why strncpy is considered insecure. Does anybody have any sort of documentation on this or examples of an exploit using it?

1
64
5/23/2010 4:21:06 AM

Take a look at this site; it's a fairly detailed explanation. Basically, strncpy() doesn't require NUL termination, and is therefore susceptible to a variety of exploits.

39
4/10/2014 11:39:04 PM

Licensed under: CC-BY-SA with attribution
Not affiliated with: Stack Overflow
Icon