Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Microsoft Windows and *nix Telnet Port Number Argument Obfuscation

From: Devdas Bhagat <devdas () dvb homelinux org>
Date: Sat, 11 Jun 2005 23:23:29 +0530
On 09/06/05 09:58 -0400, Kristian Hermansen wrote:

On Wed, 2005-06-08 at 15:04 +1200, Nick FitzGerald wrote:

This has been known since Adam was a cowboy.


Although I don't believe that your claim is unlikely, it would have been
nice to post a link to the original discovery to back it up.  Everyone
that I have showed this to, personally, has not seen it before.  And,


Ask any C programmer what happens to integers that get incremented to
values greater than the maximum size they can contain. This wrapping
around of integers is known for a few years. You may also want to
understand the effect of passing a leading 0 in the field, particularly
when it comes to IP address obfuscation.

I hope this helps.

Devdas Bhagat
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: