Things like removing bounds checks, and skipping those slow arithmetic overflow checks?
https://twitter.com/VessOnSecurity/status/802893344296812544 …
-
-
"Oh, like someone's ACTUALLY going to pass a bunch of zeros then machine language instructions to this input buffer." Uhh...
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
I bet they meant "strcpy_s()" and IDE's auto correction modified to "strcpy()" xD
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
Did they win a
#CVE for their naughtiness?Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.