Vulnerability Development mailing list archives

Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions.

From: swadlow () UTDALLAS EDU (Su Wadlow)
Date: Sat, 22 Apr 2000 22:38:30 -0500


--On Saturday, April 22, 2000 6:00 PM -0500 Ron DuFresne
<dufresne () WINTERNET COM> wrote:

Here's another question:

how dos a dos prompt handle such files?


A dir shows the 'Buffer-overflow' file with a DOS name of __~1._--,
but it's full name is listed next to the time stamp.  I can do a
'dir _á.á------Buffer-overflow-----------aaa*' (sorry, I'm not
typing in all 100 of those a's) and the filename shows up in the
listing.

Can't pass it as a parameter to, like, Notepad -- the buffer won't
go past 80 of the a's.  And I can't delete it unless I use the *
wildcard -- again, the buffer won't accept all of the a's.

Otherwise, nothing unusual that I can see.

--
Su Wadlow
swadlow () utdallas edu
    If I have to explain, you wouldn't understand . . . . :-)

Current thread:

Re: buffer overflow???, (continued)
- - - Re: buffer overflow??? Przemyslaw Frasunek (Apr 23)
    - Re: buffer overflow??? Sebastian (Apr 23)
    - Re: buffer overflow??? Markus Kern (Apr 23)
    - exploit for W98 long filenameextensions buffer overflow. Laurent Eschenauer (Apr 23)
    - Re: buffer overflow??? Blue Boar (Apr 23)
    - Re: Securax Security Advisory: Windows98 contains a seriousbuffer overflow with long filenameextensions. Markus Kern (Apr 23)
- Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Thomas Dullien (Apr 23)
  - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. John Swensson (Apr 22)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Ron DuFresne (Apr 22)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. John Swensson (Apr 22)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Su Wadlow (Apr 22)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. James Dyson (Apr 23)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Arturo Busleiman (Apr 23)
    - Re: Securax Security Advisory: Windows98 contains a seriousbuffer overflow with long filenameextensions. Blue Boar (Apr 23)
    - Securax Extension overflow update. Securax (Apr 23)
    - Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Octavian (Apr 23)
- Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. LiGHTNiNG (Apr 24)
- Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. LiGHTNiNG (Apr 24)