COMMAND : rats -w 3 Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000017 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000014 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000022 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000017 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000017 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000014 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000015 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000019 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000021 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000020 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000023 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000021 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000018 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000018 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000017 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/util.c /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:315: Medium: signal /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:316: Medium: signal /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:317: Medium: signal /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:318: Medium: signal /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:319: Medium: signal When setting signal handlers, do not use the same function to handle multiple signals. There exists the possibility a race condition will result if 2 or more different signals are sent to the process at nearly the same time. Also, when writing signal handlers, it is best to do as little as possible in them. The best strategy is to use the signal handler to set a flag, that another part of the program tests and performs the appropriate action(s) when it is set. See also: http://razor.bindview.com/publish/papers/signals.txt /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:376: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:408: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/util.c:418: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 522 Total time 0.000451 seconds 1157428 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:120: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:208: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:75: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:86: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:526: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:734: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:863: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:868: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_file.c:1058: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 1133 Total time 0.000846 seconds 1339243 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:86: High: strcpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:318: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:386: Medium: realloc /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:415: Medium: realloc /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:445: Medium: realloc /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:1564: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:72: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:83: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:105: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:180: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:180: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:181: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:202: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:208: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:309: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:434: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:437: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:438: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:495: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:496: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:497: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:888: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:890: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:895: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:895: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:896: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:897: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:898: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:903: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:903: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:904: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:904: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:112: Low: strncpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:496: Low: strncpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:600: Low: strncpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:896: Low: strncpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:898: Low: strncpy /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:903: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:374: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.tsgsi1/src/src/gen_list.c:862: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 1573 Total time 0.001391 seconds 1130841 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/be.c /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:52: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:53: High: strcat Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:50: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:50: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:134: Low: open /tmp/bogosec.temp_target.tsgsi1/src/src/be.c:136: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 370 Total time 0.000573 seconds 645724 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:84: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:100: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:107: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:109: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:318: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:330: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:362: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:385: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:412: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:424: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:437: High: strcat Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:311: High: fixed size local buffer /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:323: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:225: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_sql.c:360: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 576 Total time 0.000580 seconds 993103 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:68: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:70: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:87: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:89: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:150: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:154: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:157: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:912: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:913: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:914: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:915: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:916: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:917: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:918: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:919: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:920: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:921: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:943: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:944: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:945: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:946: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:947: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:948: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:949: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:950: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:951: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:952: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:974: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:975: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:976: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:977: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:978: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:979: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:980: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:981: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:982: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:983: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1005: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1006: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1007: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1008: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1009: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1010: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1011: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1012: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1013: High: strcat /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1014: High: strcat Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:106: High: getenv Environment variables are highly untrustable input. They may be of any length, and contain any data. Do not make any assumptions regarding content or length. If at all possible avoid using them, and if it is necessary, sanitize them and truncate them to a reasonable length. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:195: Medium: fgetc /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:331: Medium: fgetc /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:333: Medium: fgetc /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:359: Medium: fgetc Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:66: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:66: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:86: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:86: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:108: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:108: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:109: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:110: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:111: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:112: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:112: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:136: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:139: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:142: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:144: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:901: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:902: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:903: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:904: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:905: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:906: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:907: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:908: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:909: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:910: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:923: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:925: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:932: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:933: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:934: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:935: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:936: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:937: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:938: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:939: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:940: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:941: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:954: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:956: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:963: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:964: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:965: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:966: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:967: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:968: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:969: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:970: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:971: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:972: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:985: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:987: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:994: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:995: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:996: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:997: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:998: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:999: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1000: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1001: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1002: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1003: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1016: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:1018: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:109: Low: memcpy /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:110: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:542: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. /tmp/bogosec.temp_target.tsgsi1/src/src/commandconf.c:124: Low: access A potential TOCTOU (Time Of Check, Time Of Use) vulnerability exists. This is the first line where a check has occured. No matching uses were detected. Total lines analyzed: 1022 Total time 0.000960 seconds 1064583 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/error.c /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:157: High: vfprintf /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:176: High: vfprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:168: High: fixed size local buffer /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:188: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:170: High: syslog /tmp/bogosec.temp_target.tsgsi1/src/src/error.c:192: High: syslog Truncate all input strings to a reasonable length before passing them to this function Total lines analyzed: 246 Total time 0.000267 seconds 921348 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/do_md.c /tmp/bogosec.temp_target.tsgsi1/src/src/do_md.c:224: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.tsgsi1/src/src/do_md.c:133: Low: open /tmp/bogosec.temp_target.tsgsi1/src/src/do_md.c:136: Low: open A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 415 Total time 0.000385 seconds 1077922 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/db.c /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:53: Low: fixed size global buffer /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:125: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:299: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:428: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:433: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:438: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:443: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:448: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:453: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:459: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:464: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:469: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:479: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:484: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:532: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:534: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:561: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:574: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db.c:613: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 851 Total time 0.000704 seconds 1208806 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/md.c Total lines analyzed: 367 Total time 0.000303 seconds 1211221 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:209: High: getenv /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:401: High: getenv Environment variables are highly untrustable input. They may be of any length, and contain any data. Do not make any assumptions regarding content or length. If at all possible avoid using them, and if it is necessary, sanitize them and truncate them to a reasonable length. /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:675: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:699: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:704: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:722: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:752: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:756: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:782: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:785: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:815: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:862: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:880: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:895: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:944: High: fprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:966: High: getopt /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:996: High: getopt Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:234: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:432: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:653: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:677: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:709: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:725: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:730: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:841: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:864: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:884: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:898: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/getopt.c:902: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 1050 Total time 0.000870 seconds 1206896 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:1448: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4920: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:78: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:99: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4690: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4701: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4796: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4831: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4910: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.tsgsi1/src/src/gnu_regex.c:4916: Low: strncpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Also, consider using strlcpy() instead, if it is avaialable to you. Total lines analyzed: 4960 Total time 0.003979 seconds 1246544 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/base64.c /tmp/bogosec.temp_target.tsgsi1/src/src/base64.c:167: Low: memcpy /tmp/bogosec.temp_target.tsgsi1/src/src/base64.c:246: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 326 Total time 0.000298 seconds 1093959 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/getopt1.c /tmp/bogosec.temp_target.tsgsi1/src/src/getopt1.c:65: High: getopt_long /tmp/bogosec.temp_target.tsgsi1/src/src/getopt1.c:121: High: getopt_long Truncate all input strings to a reasonable length before passing them to this function Total lines analyzed: 187 Total time 0.000210 seconds 890476 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/db_lex2.c Total lines analyzed: 8 Total time 0.000055 seconds 145454 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/list.c Total lines analyzed: 166 Total time 0.000167 seconds 994011 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/symboltable.c Total lines analyzed: 51 Total time 0.000108 seconds 472222 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:84: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:97: Low: memcpy /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:398: Low: memcpy /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:451: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:424: Low: fgets Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.tsgsi1/src/src/fopen.c:205: Low: fopen A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 609 Total time 0.000501 seconds 1215568 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:59: High: fprintf /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:85: High: fprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:116: High: getopt_long Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:467: High: umask umask() can easily be used to create files with unsafe priviledges. It should be set to restrictive values. /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:591: High: printf Check to be sure that the non-constant format string passed as argument 1 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:261: Medium: realloc Don't use on memory intended to be secure, because the old structure will not be zeroed out. /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:261: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/aide.c:530: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 627 Total time 0.000547 seconds 1146252 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/conf_lex2.c Total lines analyzed: 8 Total time 0.000060 seconds 133333 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:816: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:1050: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:1058: High: syslog Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:57: Low: fixed size global buffer /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:58: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:382: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:383: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:387: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:388: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:391: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:392: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:510: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:511: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:519: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:521: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:526: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:528: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:560: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:562: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:569: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:571: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:586: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:588: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:599: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:601: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:604: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:606: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:618: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:620: Low: snprintf /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:1052: Low: snprintf Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:809: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/compare_db.c:842: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 1190 Total time 0.001131 seconds 1052166 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:578: High: fixed size local buffer /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:856: High: fixed size local buffer Extra care should be taken to ensure that character arrays that are allocated on the stack are used safely. They are prime targets for buffer overflow attacks. /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:862: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:866: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:867: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:869: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:875: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:876: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:878: High: sprintf Check to be sure that the non-constant format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:862: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:866: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:867: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:869: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:875: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:876: High: sprintf /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:878: High: sprintf Check to be sure that the format string passed as argument 2 to this function call does not come from an untrusted source that could have added formatting characters that the code is not prepared to handle. Additionally, the format string could contain `%s' without precision that could result in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:564: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/snprintf.c:706: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 1029 Total time 0.001086 seconds 947513 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:120: High: strcpy /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:152: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:124: High: strcat Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:111: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:112: Low: strlen /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:149: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. /tmp/bogosec.temp_target.tsgsi1/src/src/db_disk.c:415: Low: opendir A potential race condition vulnerability exists here. Normally a call to this function is vulnerable only when a match check precedes it. No check was detected, however one could still exist that could not be detected. Total lines analyzed: 481 Total time 0.000385 seconds 1249350 lines per second