Revision history for secCanCreatePathOfSize

Revision [304]

Last edited on 2008-10-21 08:02:09 by JohnMcIntosh

No Differences

Revision [297]

Edited on 2008-10-21 03:52:14 by JohnMcIntosh
mirror of windows code
rewritten code, handles null terminated character and compares between trusted, untrusted paths and incoming data correctly.
Original code
It is quite possible to defeat any sand boxing by coding path level indirection or using tricks like setting up an alias or symbolic link file/directory within the trusted/untrusted directory path.

Revision [296]

The oldest known version of this page was created on 2008-10-21 03:46:23 by JohnMcIntosh
Valid XHTML :: Valid CSS: :: Powered by WikkaWiki