Re: HTML Form Protocol Attack

• Previous message: Daniel Roethlisberger: "BID 3161: other ZyXEL Prestige routers affected too"
• In reply to: Jochen Topf: "HTML Form Protocol Attack"
• Next in thread: Jesse Ruderman: "Re: HTML Form Protocol Attack"
• Reply: Jesse Ruderman: "Re: HTML Form Protocol Attack"
• Reply: Sevo Stille: "Re: HTML Form Protocol Attack"
• Reply: Bruno Treguier: "Re: HTML Form Protocol Attack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I tried this out on mozilla, lynx and netscape (all linux) and got the
following results:

mozilla 0.9.1

Pops up message:
"Access to the port number given has been disabled for security reasons."
When I tried to get it to connect to ftp (port 21) - however if you add
65536 to this value, so try submitting the form to 65557 it doesn't
complain and will connect to port 21, but gets stuck halfway through
the transmission, without submitting the evil data. Maybe there is a
way round that though.

lynx will connect fine without complaint.

netscape communicator (4.77) - couldn't get it to connect even with
the trick of wrapping the port number round.

Barnaby

On Wed, Aug 15, 2001 at 09:20:19AM +0200, Jochen Topf wrote:
> Some HTML browsers can be tricked through the use of HTML forms into sending
> more or less arbitrary data to any TCP port.
..
> 
> Jochen

• Next message: Simple Nomad: "Groupwise Webaccess, NetWare web server, and Novell"
• Previous message: Daniel Roethlisberger: "BID 3161: other ZyXEL Prestige routers affected too"
• In reply to: Jochen Topf: "HTML Form Protocol Attack"
• Next in thread: Jesse Ruderman: "Re: HTML Form Protocol Attack"
• Reply: Jesse Ruderman: "Re: HTML Form Protocol Attack"
• Reply: Sevo Stille: "Re: HTML Form Protocol Attack"
• Reply: Bruno Treguier: "Re: HTML Form Protocol Attack"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Aug 15 2001 - 13:03:43 PDT