RE: ASP code testing

• Previous message: nobody: "wanted: a script to try dictionary attacks against NOTES ID files"
• In reply to: Dan Richardson: "ASP code testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Omar Koudsi" <omark@jeeran.com>
To: "Dan Richardson" <dan.richardson@paradise.net.nz>, <pen-test@securityfocus.com>
Subject: RE: ASP code testing
Date: Sun, 18 Nov 2001 22:04:32 +0200
Message-ID: <IFELLCOJHABDKLIBJMLAIEHKCHAA.omark@jeeran.com>

No, this is not a buffer over-flow. The errors you are getting are standard
DB error for not found records or illegal numbering

-----------
Omar Koudsi
IT Architect
Network Security Center
Special Systems Company
http://security.sscjo.com
omark@sscjo.com
Tel: (9626) 5664221
Fax: (9626) 5681557

-----Original Message-----
From: Dan Richardson [mailto:dan.richardson@paradise.net.nz]
Sent: Sun, November 18, 2001 1:00 AM
To: pen-test@securityfocus.com
Subject: ASP code testing

I'm currently testing some ASP code on an e-commerce site. My question
is could this be used to execute a buffer overflow exploit?

The following URL:

http://www.asite.com/show/showsomething.asp?ID=5

Will retrieve a legitmate item from the database. By playing with the
number a bit-

http://www.asite.com/show/showsomething.asp?ID=32767

Will generate

ADODB.Field error '80020009'

Either BOF or EOF is True, or the current record has been deleted.
Requested operation requires a current record.

But if I bump that number up to 32768 (unsigned integer limit)-

Microsoft VBScript runtime error '800a0006'

Overflow: 'cint'

/show/showsomething.asp, line x

Thanks

Dan

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

• Previous message: nobody: "wanted: a script to try dictionary attacks against NOTES ID files"
• In reply to: Dan Richardson: "ASP code testing"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages ASP code testing ... Subject: ASP code testing ... I'm currently testing some ASP code on an e-commerce site. ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... (Pen-Test) Re: ASP code testing ... Subject: ASP code testing ... > is could this be used to execute a buffer overflow exploit? ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... (Pen-Test) RE: Cross Site Scripting Vulnerabilities - XSS ... Cross Site Scripting Vulnerabilities - XSS ... >> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... (Pen-Test) Re: Cross Site Scripting Vulnerabilities - XSS ... Cross Site Scripting Vulnerabilities - XSS ... >>> This list is provided by the SecurityFocus Security Intelligence ... For more information on SecurityFocus' SIA service which ... (Pen-Test) Re: faster scans? (nmap) ... one host using nmap for syn scans in burst mode with the ... >>>This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... (Pen-Test)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint