Full Disclosure mailing list archives
Re: question regarding CAN-2004-0930
From: "evil" <evilninja () gmx net>
Date: Thu, 18 Nov 2004 01:12:57 +0100
On Wed, 17 Nov 2004 17:49:12 -0600, Paul Schmehl wrote
When you do an "ls", you are making a call that the *os* has to respond to. The os is *not* vulnerable, so it (properly) rejects the request as malformed.
i think i get it now. as someone else explained is "wildcard expansion" also an issue here. so the (linux) os responds, before the smbd could even notice the call.
Hopefully that makes more sense to you.
yes, thank you. Christian. -- BOFH excuse #433: error: one bad user found in front of screen _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- question regarding CAN-2004-0930 Christian Kujau (Nov 16)
- Re: question regarding CAN-2004-0930 Paul Schmehl (Nov 16)
- Re: question regarding CAN-2004-0930 Christian (Nov 16)
- Re: question regarding CAN-2004-0930 upb (Nov 16)
- Re: question regarding CAN-2004-0930 Paul Schmehl (Nov 17)
- Re: question regarding CAN-2004-0930 evil (Nov 17)
- Re: question regarding CAN-2004-0930 Christian (Nov 16)
- Re: question regarding CAN-2004-0930 Paul Schmehl (Nov 16)
- <Possible follow-ups>
- question regarding CAN-2004-0930 evilninja (Nov 16)
- RE: question regarding CAN-2004-0930 Castigliola, Angelo (Nov 16)
- Re: question regarding CAN-2004-0930 Rob klein Gunnewiek (Nov 17)
- Re: question regarding CAN-2004-0930 Christian (Nov 17)
- Re: question regarding CAN-2004-0930 Rob klein Gunnewiek (Nov 17)