PureBasic Forums - English

http://www.purebasic.com
https://www.purebasic.fr/english/

[Implemented] security vulnerability in network lib

https://www.purebasic.fr/english/viewtopic.php?t=37000

Page 1 of 1

[Implemented] security vulnerability in network lib

Posted: Sun Apr 05, 2009 11:20 am
by cxAlex
If a file is send to a server with SendNetworkFile(), all other incoming data is blocked until the file is received. There is no way to cancel the receiving of the file, i have to save the file on my HDD or the server won't work any more. If a program doesn't checks the #PB_Network_File - Event, that's an easy way to crash the server.

There should be a command like BlockNetworkFile() to block Files, or a command to disable the receiving of files generally.

Posted: Mon Apr 06, 2009 3:26 pm
by Tranquil
Would be nice if SendNetworkFile() can be disabled on server creation. Something like #PB_Network_NoSendFile or something similar.

I absolutely agrree with cxAlex - this function is a must have!

Posted: Mon Apr 06, 2009 5:17 pm
by nco2k
agreed.

c ya,
nco2k
All times are UTC+01:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited