digitalmars.D.bugs - [Issue 385] New: unprotected command line parsing

d-bugmail puremagic.com (60/60) Sep 28 2006 http://d.puremagic.com/issues/show_bug.cgi?id=385

d-bugmail puremagic.com (9/9) Oct 04 2006 http://d.puremagic.com/issues/show_bug.cgi?id=385

d-bugmail puremagic.com writes:

http://d.puremagic.com/issues/show_bug.cgi?id=385

           Summary: unprotected command line parsing
           Product: D
           Version: 0.167
          Platform: PC
        OS/Version: All
            Status: NEW
          Keywords: patch
          Severity: normal
          Priority: P2
         Component: DMD
        AssignedTo: bugzilla digitalmars.com
        ReportedBy: thomas-dloop kuehne.cn


DMD-0.167's argument parsing is unprotected against malicious command line
arguments.

Sample exploits:













mars.c's current code:















Suggested fix:










































--

Sep 28 2006

d-bugmail puremagic.com writes:

http://d.puremagic.com/issues/show_bug.cgi?id=385


bugzilla digitalmars.com changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |FIXED





Fixed DMD 0.168


--

Oct 04 2006

D Programming

C/C++ Programming

Other

digitalmars.D.bugs - [Issue 385] New: unprotected command line parsing