Announcement

Collapse
No announcement yet.

SHFileOperation and security

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    SHFileOperation and security

    The issue is described at https://buildsecurityin.us-cert.gov/...1/826-BSI.html

    Would this code be vulnerable?

    Code:
    FUNCTION PBMAIN () AS LONG
LOCAL shop AS SHFILEOPSTRUCT
LOCAL shopQTHfrom,shopQTHto AS STRING
LOCAL I AS LONG
    shopQTHfrom = "C:\temp\*.txt" + $NUL + $NUL
    shopQTHto   = "C:\temp2" + $NUL + $NUL
    shop.pFrom  = STRPTR(shopQTHfrom)
    shop.pTo    = STRPTR(shopQTHto)
    shop.hwnd   = 0
    shop.wFunc  = %FO_MOVE
    I = SHFILEOPERATION(shop)
    STDOUT "Result code = " + HEX$(I)
    WAITKEY$

END FUNCTION
    Erich Schulman (KT4VOL/KTN4CA)
    Go Big Orange
    Tags: None
  • #2
    As I read the link, no.

    You are not vulnerable because you don't check the status and THEN 'do it', you just "do it"; ergo you don't have any 'atomicity' (Sheesh, what a so-called word!) issues.

    Then again, you could simply copy, compare and delete instead of moving; except that WILL have issues if source file is in use. So if I were REALLY concerned I'd

    OPEN source file Exclusive
    OPEN desitination exclusive
    Get and PUT data
    CLOSE, CLOSE
    Delete source

    No way with this scenario anything can interfere, unless something can intrude into your process' memory whilst getting and putting. (Maybe memory map both files and move exclusively from your process' memory?)

    MCM
    Michael Mattias
    Tal Systems (retired)
    Port Washington WI USA
    [email protected]
    http://www.talsystems.com

    Comment

    Previous template Next
    Working...
    X

    We process personal data about users of our site, through the use of cookies and other technologies, to deliver our services, and to analyze site activity. For additional details, refer to our Privacy Policy.

    By clicking "I AGREE" below, you agree to our Privacy Policy and our personal data processing and cookie practices as described therein. You also acknowledge that this forum may be hosted outside your country and you consent to the collection, storage, and processing of your data in the country where this forum is hosted.

    I Agree