If I use std::cin, std::cout and std::string, is there any possibility that someone will

Question

0

Asked: May 26, 20262026-05-26T18:48:53+00:00 2026-05-26T18:48:53+00:00

If I use std::cin, std::cout and std::string, is there any possibility that someone will

0

If I use std::cin, std::cout and std::string, is there any possibility that someone will exploit the buffer overflow?

I ask this because I still see a lot of people that still use null-terminated strings instead of standard containers in C++.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-26T18:48:54+00:00

It depends. Of course, when you use C-style code/API’s, there is no difference.

But using STL or C++ idioms doesn’t guarantee that you’re safe.

C++ gives you the choice, always. Contrast these two near-identical twins:

int n;
std::cin >> n;
std::string s(n, '*'); // create a data store of given size

std::vector<char> v(1000);
std::copy(s.begin(), s.end(), v.begin()); // NOT safe if n > 1000

safe variant:

int n;
std::cin >> n;
if (n > MAX_LIMIT) 
    throw std::runtime_error("input too large");
std::string s(std::min(0, n), '*'); // note input sanitation

std::vector<char> v;
v.reserve(1000);
std::copy(s.begin(), s.end(), std::back_inserter(v)); // safe

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

If I use std::cin, std::cout and std::string, is there any possibility that someone will

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply