Chip-8-Emulator icon indicating copy to clipboard operation
Chip-8-Emulator copied to clipboard

Published 20 hours ago verified publisher icon arnsa

Buffer overflow in chip8_start()

Open justinas opened this issue 11 years ago • 0 comments

There's an obvious buffer overflow vulnerability in chip8_start() as a fixed-size buffer is used with scanf without width limit.

This could be circumvented by changing the format string to something like

scanf("%99s", name);

or, even better, adopting argv and/or getopt for parsing the command line arguments.

justinas avatar Apr 01 '13 13:04 justinas