Index of /ports_security/pscan
Name Last modified Size
![[DIR]](/icons/back.gif)
Parent Directory -
![[ ]](/icons/unknown.gif)
Makefile 19-Jan-2010 08:34 678
distinfo 25-Oct-2009 20:13 171
![[DIR]](/icons/folder.gif)
files/ 25-Oct-2009 20:13 -
![[TXT]](/icons/text.gif)
pkg-descr 25-Oct-2009 20:13 524
pkg-plist 23-Sep-2000 03:13 27
PScan is a C source code security scanner, which looks for misuse of
libc functions which use varargs and printf-style formatting
operators. In many situations these can cause security vulnerabilities
in the application if it runs with privileges (setugid, or listening
to a network socket, etc).
An example of the kind of situation pscan looks for is the following:
variable = "%s"; /* or malicious user input */
sprintf(buffer, variable); /* BAD! */
WWW: http://deployingradius.com/pscan/