[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Microsoft Windows and *nix Telnet Port Number Argument Obfuscation

To: Full Disclosure <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] Microsoft Windows and *nix Telnet Port Number Argument Obfuscation
From: Devdas Bhagat <devdas@xxxxxxxxxxxxxxxxx>
Date: Sat, 11 Jun 2005 23:23:29 +0530

On 09/06/05 09:58 -0400, Kristian Hermansen wrote:
> On Wed, 2005-06-08 at 15:04 +1200, Nick FitzGerald wrote:
> > This has been known since Adam was a cowboy.
> 
> Although I don't believe that your claim is unlikely, it would have been
> nice to post a link to the original discovery to back it up.  Everyone
> that I have showed this to, personally, has not seen it before.  And,

Ask any C programmer what happens to integers that get incremented to
values greater than the maximum size they can contain. This wrapping
around of integers is known for a few years. You may also want to
understand the effect of passing a leading 0 in the field, particularly
when it comes to IP address obfuscation.

I hope this helps.

Devdas Bhagat
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Microsoft Windows and *nix Telnet Port Number Argument Obfuscation
  - From: Nick FitzGerald
- Re: [Full-disclosure] Microsoft Windows and *nix Telnet Port Number Argument Obfuscation
  - From: Kristian Hermansen

Prev by Date: [Full-disclosure] In USA the Government Votes for YOU? - Electronic Voting Systems'Security, Report
Next by Date: [Full-disclosure] [ GLSA 200506-10 ] LutelWall: Insecure temporary file creation
Previous by thread: Re: [Full-disclosure] Microsoft Windows and *nix Telnet PortNumber Argument Obfuscation
Next by thread: [Full-disclosure] iDEFENSE Labs Releases Malcode Analyst Pack
Index(es):
- Date
- Thread