Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- From: Matthew Flaschen <matthew.flaschen@xxxxxxxxxx>
- Date: Mon, 23 Oct 2006 18:24:40 -0400
Aren't cross-zone urls disallowed by default, though?
Matt Flaschen
Peter Ferrie wrote:
file://OK, I'll bite. Why are file:// URLs relevant to the discussion?
?
It allows arbitrary data to be passed to CMD.EXE, without first owning the system.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- References:
- Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- From: Peter Ferrie
- Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- Prev by Date: Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- Next by Date: Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- Previous by thread: Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- Next by thread: Re: [Full-disclosure] Windows Command Processor CMD.EXE BufferOverflow
- Index(es):
Relevant Pages
|
