Vulnerability Development mailing list archives
Valid characters on one o/s are invalid on another
From: "Kayne Ian (Softlab)" <Ian.Kayne () softlab co uk>
Date: Mon, 25 Jun 2001 09:15:29 +0100
Hey all,
This recent thread about antivirus scanners & DOS archives got me
thinking. Years ago (before *zip introduced the non-absolute paths option),
it was possible to create a zip archive with some files in, hex edit the
archive and change the locations of some of these files, thus making it
extremely easy to transparently replace files on a system that the archive
is extracted on. This used to be a particularly nasty trick on amiga bbs's -
the amiga version of zip was pretty pathetic to say the least. Anyway, this
got me wondering about seeing whether this was still possible (albeit in a
different manner). After playing around, I noticed something strange.
We all know Windows (well the FS really) doesn't allow certain ascii
characters to be used for filenames - ?, " etc... But, other o/s's
filesystems do - in this case Amiga O/S 3.0 & the FFS (fast file system).
So, when I got a CD on the amiga containing some files with legal characters
under workbench but illegal under windows, then tried to access the CD on a
windows machine (specifically the badly named files), some dodgy behaviour
happened. Files started "dissapearing" from the CD etc... Didn't go much
further than this...
Just wondering if anyone else has any thoughts/opinions on this ...
Is it even any use or worth looking into?
Ian Kayne
Technical Specialist - IT Solutions
Softlab Ltd - A BMW Company
********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom
they are addressed.
If you are not the intended recipient or the person responsible for
delivering to the intended recipient, be advised that you have received
this email in error and that any use of the information contained within
this email or attachments is strictly prohibited.
Internet communications are not secure and Softlab does not accept
any legal responsibility for the content of this message. Any opinions
expressed in the email are those of the individual and not necessarily
those of the Company.
If you have received this email in error, or if you are concerned with
the content of this email please notify the IT helpdesk by telephone
on +44 (0)121 788 5480.
********************************************************************
Current thread:
- Valid characters on one o/s are invalid on another Kayne Ian (Softlab) (Jun 25)
- Re: Valid characters on one o/s are invalid on another Juan M. Courcoul (Jun 26)
- Recovering the activation key from a Win2K installation Juan M. Courcoul (Jun 26)
- Re: Recovering the activation key from a Win2K installation George Bolton (Jun 26)
- RE: Recovering the activation key from a Win2K installation Steven Evans (Jun 27)
- Re: Recovering the activation key from a Win2K installation Bryan Allerdice (Jun 27)
- Re: Recovering the activation key from a Win2K installation meiso (Jun 29)
- Re: Recovering the activation key from a Win2K installation Technical Support (Jun 30)
- Recovering the activation key from a Win2K installation Juan M. Courcoul (Jun 26)
- Re: Recovering the activation key from a Win2K installation Bryan Allerdice (Jun 27)
- Re: Recovering the activation key from a Win2K installation Zow (Jun 27)
- Re: Valid characters on one o/s are invalid on another Juan M. Courcoul (Jun 26)