COMMAND : rats -w 3 Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.6XjZR2/src/linux.c /tmp/bogosec.temp_target.6XjZR2/src/linux.c:37: High: strcpy /tmp/bogosec.temp_target.6XjZR2/src/linux.c:76: High: strcpy Check to be sure that argument 2 passed to this function call will not copy more data than can be handled, resulting in a buffer overflow. Total lines analyzed: 85 Total time 0.000135 seconds 629629 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c:202: High: getopt Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c:84: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c:28: Low: fixed size global buffer Extra care should be taken to ensure that character arrays that are allocated with a static size are used safely. This appears to be a global allocation and is less dangerous than a similar one on the stack. Extra caution is still advised, however. /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c:48: Low: strlen /tmp/bogosec.temp_target.6XjZR2/src/aoecfg.c:209: Low: strlen This function does not properly handle non-NULL terminated strings. This does not result in exploitable code, but can lead to access violations. Total lines analyzed: 243 Total time 0.000261 seconds 931034 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Total lines analyzed: 0 Total time 0.000016 seconds 0 lines per second Entries in perl database: 33 Entries in python database: 62 Entries in c database: 336 Entries in php database: 55 Analyzing /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:371: High: getopt Truncate all input strings to a reasonable length before passing them to this function /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:126: Medium: read /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:159: Medium: read /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:325: Medium: read Check buffer boundaries if calling this function in a loop and make sure you are not in danger of writing past the allocated space. /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:146: Low: memcpy /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:183: Low: memcpy /tmp/bogosec.temp_target.6XjZR2/src/aoeping.c:184: Low: memcpy Double check that your buffer is as big as you specify. When using functions that accept a number n of bytes to copy, such as strncpy, be aware that if the dest buffer size = n it may not NULL-terminate the string. Total lines analyzed: 467 Total time 0.000476 seconds 981092 lines per second