nmap icon indicating copy to clipboard operation
nmap copied to clipboard
verified publisher icon nmap

Integer overflow in parse of max_ips_to_scan

Open dksslq opened this issue 1 year ago • 0 comments

Describe the bug Integer overflow in parse of max_ips_to_scan max_ips_to_scan defined as unsigned int max_ips_to_scan; // Used for Random input (-iR) to specify how in NmapOps.h but use as ulong o.max_ips_to_scan = strtoul(optarg, &endptr, 10); in nmap.cc

To Reproduce nmap -iR 2147483647 works fine, nmap -iR 2147483648 parsed 0 target.

dksslq avatar May 11 '24 20:05 dksslq