A post in this(Are system() calls evil?) thread says:
"Your program's privileges are inherited by its spawned programs. If your application ever runs as a privileged user, all someone has to do is put their own program with the name of the thing you shell out too, and then can execute arbitrary code (this implies you should never run a program that uses system as root or setuid root)."
But system("PAUSE") and system("CLS") don't appear to shell to anything. Or do they?
When looking up "does system("PAUSE") shell to anything C++" in google I found no relevant results.
Aucun commentaire:
Enregistrer un commentaire