{{
`${userDetail.user.displayName}${userDetail.user.cachedBungieGlobalDisplayNameCode ? `#${standardizeBungieGlobalCode(userDetail.user.cachedBungieGlobalDisplayNameCode)}` : ""}`}}
{{getUserClans()}}
8/30/2021 1:36:07 PM
1
Note that the dll contains the word "path" at the point that most precisely describes its function. Combine that with it being a buffer overflow-related dll, and the purpose is clear - this must be a library which thunks functions that e.g. resolve incomplete file pathnames, get directory listings, etc, with the original versions just writing requested data to a pointer without a known length. The thunk functions replace those with versions that provide a known length so the OS doesn't provide more data than the size of the buffer provided by the applications programmer.
All of which boils down to this only being a vulnerability to people who can already substantially alter your filesystem in places where Destiny 2 would be using these functions on the filesystem to begin with.
A near-trivial concern, exploit-wise.
English
-
Edited by XiiDraco: 8/30/2021 2:06:35 PMValuable input. I wasn't even looking into it all that hard but that makes sense. Just wish I didn't read it with a groggy brain the second I woke up on the first day going back to classes again. T_T
