[Bug 46661] ISF_Desktop_fnGetDisplayNameOf function missing check for string variable This- >sPathTarget before copy it

17 Feb 2019


      https://bugs.winehq.org/show_bug.cgi?id=46661
--- Comment #1 from ossecurity ossecurity@iscas.ac.cn ---
Function:ISF_Desktop_fnGetDisplayNameOf is in shfldr_desktop.c:583
Here is a List of similar bugs which need further examination:
key stmt/exp                         function          (nearest)WINAPI for HOOK
attack
strcpyW(pszPath, This->sPathTarget); ISF_Desktop_fnGetDisplayNameOf            
ITSELF
lstrcpynW(szPath, This->sPathTarget, MAX_PATH);ISF_Desktop_fnParseDisplayName  
ITSELF
strlenW(font->name)                  get_outline_text_metrics       
GetTextMetricsW/A
lstrcpynW(str, physdev->font->name, count); freetype_GetTextFace    
GetTextMetricsW/A
n = strlenW(physdev->font->name) + 1;       freetype_GetTextFace    
GetTextMetricsW/A
lstrcpynW(dst, es->text, count);    EDIT_WM_GetText           
Dispatch/SendMessageW/A
memcpy(buf, es->text + s, bufl * sizeof(WCHAR)); EDIT_EM_ReplaceSel
Dispatch/SendMessageW/A
-- 
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

[Bug 46661] ISF_Desktop_fnGetDisplayNameOf function missing check for string variable This- >sPathTarget before copy it