Comment Re: It's not the language, you stupid jackwagons.. (Score 1) 663
ll web applications are partly written in C.
The vast majority of web applications are not written in C. The operating system and other underlying software is, but that's not what the OWASP paper was talking about.
Your link was deficient because it didn't include web applications, which is where most of the code written today actually is.
My link had columns for XSS and SQL injection. I explicitly mentioned them in my reply. Aren't you tired of being so wrong about obvious things?
A single buffer overflow can't be exploited on a modern system, it takes more vulnerabilities than that.
It depends on the vulnerability. Also, at the minimum, they often result in a crash. But the fact is that buffer overflows are resulting in exploits.