Full Disclosure mailing list archives
Re: OT microsoft "feature"
From: Aaron Gee-Clough <lists () g-clef net>
Date: Fri, 16 Apr 2004 11:42:37 -0400
Jeffrey A.K. Dick wrote:
"Anyone has a good explaination for this ? " I'll leave it to you to decide if the explanation is good ... "Windows NT utilities can accept Internet Protocol (IP) addresses comprised of decimal, octal, or hexadecimal numbers. This can cause confusion if you unintentionally use a leading zero in a decimal octet. With a leading zero, the number is resolved by these utilities as an octal number, thus specifying the wrong IP address. " http://support.microsoft.com/default.aspx?scid=kb;en-us;115388
Interesting. Of course, it's also a little bit...off: C:\>ping 090.090.090.090 Pinging 72.72.72.72 with 32 bytes of data: Request timed out. Ping statistics for 72.72.72.72: Packets: Sent = 1, Received = 0, Lost = 1 (100% loss), Approximate round trip times in milli-seconds: Minimum = 0ms, Maximum = 0ms, Average = 0ms Control-C ^C C:\>If this were truly octal, 9's should be invalid (as should 8's). Instead, we have some base-10/base-8 hybrid that they decided to call "octal."
Note: Linux (RedHat and Debian, anyway) appear to do the "preceeding 0=>octal" bit also, but they properly filter the 090 to be something unknown.
This really doesn't look like a security issue, though. Just lazy coding. (Feel free to prove me wrong.)
Aaron _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- OT microsoft "feature" Davide Del Vecchio (Apr 16)
- Re: OT microsoft "feature" Ralf Ertzinger (Apr 16)
- Re: OT microsoft "feature" Ovidiu Constantin (Apr 16)
- Re: OT microsoft "feature" Bradford Shedwick (Apr 16)
- Re: OT microsoft "feature" Michal Zalewski (Apr 16)
- Re: OT microsoft "feature" Cedric Blancher (Apr 16)
- Re: OT microsoft "feature" Bugtraq Security Systems (Apr 16)
- RE: OT microsoft "feature" Jeffrey A.K. Dick (Apr 16)
- Re: OT microsoft "feature" Aaron Gee-Clough (Apr 16)
- Re: OT microsoft "feature" Valdis . Kletnieks (Apr 16)
- Re: OT microsoft "feature" Aaron Gee-Clough (Apr 16)
- Re: OT microsoft "feature" Steve Ames (Apr 16)
- Re: OT microsoft "feature" Florian Weimer (Apr 16)
- Re: OT microsoft "feature" Bradford Shedwick (Apr 16)
- Re: OT microsoft "feature" Lyne Bourque (Apr 16)
- Re: OT microsoft "feature" Tim Bond (Apr 16)
- Re: OT microsoft "feature" Sacha J. Bernstein (Apr 16)
- Re: OT microsoft "feature" Raymond Morsman (Apr 16)
- <Possible follow-ups>
- RE: OT microsoft "feature" Serge van Ginderachter (svgn) (Apr 16)
- RE: OT microsoft "feature" John.Herbert (Apr 16)
(Thread continues...)