Question: This is a c code #include #include int main(void) { char buff[15]; char sysCommand[10]; char extra[2]; char charPtr = malloc(15 sizeof(*charPtr)); int pass; extra[2]

This is a c code

#include

int main(void)

{

char buff[15];

char sysCommand[10];

char extra[2];

char *charPtr = malloc(15 * sizeof(*charPtr));

int pass;

extra[2] = '\0';

printf(" Enter the password : ");

gets(buff);

if(strcmp(buff, "Joshua") == 0)

{

pass = 2;

}

else if (strcmp(buff, "Student123") == 0)

{

printf (" Correct Password. You may do an ls or whoami ");

pass = 1;

}

if(pass == 1)

{

printf ("Command: ");

gets(sysCommand);

if (strcmp(sysCommand, "ls") == 0 || strcmp(sysCommand, "whoami") )

system(sysCommand);

}

else if (pass == 2)

{

printf("Greetings Professor Falken ");

printf("Command: ");

gets(sysCommand);

system(sysCommand);

}

return 0;

}

List 5 potential security issues with the code (and there are lots of things wrong)

And fix this code if you can.

Step by Step Solution

There are 3 Steps involved in it

1 Expert Approved Answer

Step: 1 Unlock blur-text-image

Question Has Been Solved by an Expert!

Get step-by-step solutions from verified subject matter experts

Step: 2 Unlock

Step: 3 Unlock

Students Have Also Explored These Related Databases Questions!

C programming problem. By using the following instruction below convert the program "prog". The program will be posted under the instruction photo. This is CODE "prog" as shown below Change the code...

C programming Problem. The program below is named "prog" have to convert it using the functions ask of the programing problem. # include # include int main (void) char menuoption; int intx, inty,...

Yes I'm learning C Objectives: Build your own shell. Background: This project consists of modifying a C program which serves as a shell interface that accepts user commands and then executes each...

C Programming Take screenshot of compiled output once complete. (which should look similar to the sample one provided). Fill in the missing code in the four areas that say "Student provides missing...

THIS IS IN C PROGRAMMING LANGUAGE. PLEASE POST ONLY "MAIN" IN CODE 1 FOR THE ANSWER. THANK YOU! Objectives: Build your own shell. A Simple Shell A C program that provides the basic operation of a...

THIS IS IN C PROGRAMMING LANGUAGE. PLEASE ONLY POST "MAIN'' IN CODE 1 FOR THE ANSWER. THANK YOU! Objectives: Build your own shell. A Simple Shell A C program that provides the basic operation of a...

THIS IS IN C PROGRAMMING LANGUAGE. PLEASE MODIFY CODE 1(CODE 2 AS WELL IF NEEDED) FOR THE ANSWER. THANK YOU! Objectives: Build your own shell. A Simple Shell A C program that provides the basic...

C program This is a study guide for an exam. Answers along with explanations would be extremely helpful. Thanks. Using the code below apply the following assumptions: The address of num1 is 2000, of...

Financial accounting is designed to measure directly the value of a business enterprise. Comment.

Let = {a,b,c,d,f}. Consider the function X: 22-R defined by X(a)= X(b) 10. X(c)= X(d) = 15, X(e) = 0 a) Determine the o-algebra generated by X (write it explicitly) b) Now consider the the a-algebra...

Assume that the interest rate on boerowing in Jopan is 1 percent, while the interest rate on deposits in Australian banks is 5 percent. A trader borrows in yen and then converts the money into...

Compared with half a century ago, adoption has become _ _ _ _ _ _ _ _ _ common, but it is more open and acceptabl e , so we probably discuss it _ _ _ _ _ _ _ . fill in the blanks more or much less or...

Why is the System Build Process an iterative process?

What phase normally comes directly after the System Build process in a Project?

Name two other algorithms available in SSAS Data Mining other than Decision Trees.

Question: This is a c code #include #include int main(void) { char buff[15]; char sysCommand[10]; char extra[2]; char *charPtr = malloc(15 * sizeof(*charPtr)); int pass; extra[2]

Step by Step Solution

Students Have Also Explored These Related Databases Questions!

Question: This is a c code #include #include int main(void) { char buff[15]; char sysCommand[10]; char extra[2]; char charPtr = malloc(15 sizeof(*charPtr)); int pass; extra[2]