[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] question regarding CAN-2004-0930

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: Re: [Full-Disclosure] question regarding CAN-2004-0930
From: "evil" <evilninja@xxxxxxx>
Date: Thu, 18 Nov 2004 01:12:57 +0100

On Wed, 17 Nov 2004 17:49:12 -0600, Paul Schmehl wrote
> 
> When you do an "ls", you are making a call that the *os* has 
> to respond to. The os is *not* vulnerable, so it (properly)
> rejects the request as malformed.

i think i get it now. as someone else explained is "wildcard expansion"
also an issue here. so the (linux) os responds, before the smbd could
even notice the call.

> Hopefully that makes more sense to you.

yes, thank you.

Christian.
-- 
BOFH excuse #433:

error: one bad user found in front of screen

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] question regarding CAN-2004-0930
  - From: Christian Kujau
- Re: [Full-Disclosure] question regarding CAN-2004-0930
  - From: Paul Schmehl
- Re: [Full-Disclosure] question regarding CAN-2004-0930
  - From: Christian
- Re: [Full-Disclosure] question regarding CAN-2004-0930
  - From: Paul Schmehl

Prev by Date: [Full-Disclosure] Re: New whitepaper: Writing IA32 Restricted Instruction Set Shellcode Decoder Loops
Next by Date: [Full-Disclosure] RX171104 Cscope v15.5 and minors - symlink vulnerability - advisory, exploit and patch.
Previous by thread: Re: [Full-Disclosure] question regarding CAN-2004-0930
Next by thread: [Full-Disclosure] [ GLSA 200411-24 ] BNC: Buffer overflow vulnerability
Index(es):
- Date
- Thread