Bugtraq mailing list archives
Re: The old "." problem
From: davidz () IHUG COM AU (David Zverina)
Date: Thu, 14 Oct 1999 18:20:57 +1000
If I remember correctly the problem was actually with NT (possibly in Win32 API?) not distinguishing correctly between filename, filename., filename.., etc. as illustrated below. This means that this problem affects every piece of software under NT which does not take specific steps to prevent it. Same goes for the "::$DATA" suffix under NTFS which you'll find probably also allows to bypass checks based on a equivalency of a filename. Cheers, Dave/ --- example --- C:\TEMP>dir x.txt* Volume in drive C has no label. Volume Serial Number is 1DFF-2C70 Directory of C:\TEMP File Not Found C:\TEMP>echo hi > x.txt C:\TEMP>type x.txt hi C:\TEMP>type x.txt. hi --- David Zverina Engineer - Black Ice Software "This message transmitted on 100% recycled electrons."
-----Original Message----- From: Bugtraq List [mailto:BUGTRAQ () SECURITYFOCUS COM]On Behalf Of nblasgen () NICK REFRACT COM Sent: Thursday, 14 October 1999 8:31 To: BUGTRAQ () SECURITYFOCUS COM Subject: The old "." problem A while back there was the problem of Windows HTTP servers with CGI and other sever parsed pages (ASF, SMX, etc) if you added a "." to the end it would give you the raw code in TEXT format. I understand how that was a security problem. Just noticed that the same problem is true for at least one Windows FTP server, Serv-U. I can't find a problem with being able to request files with a extra "." at the end. I was unable to test the idea of downloading files that I had no permissions too. Nicholas Blasgen Refract, LLC
Current thread:
- Re: SCO OpenServer 5.0.5 overwrite /etc/shadow, (continued)
- Re: SCO OpenServer 5.0.5 overwrite /etc/shadow Bela Lubkin (Oct 11)
- Re: SCO OpenServer 5.0.5 overwrite /etc/shadow Ralph the Wonder Llama (Oct 12)
- Re: SCO OpenServer 5.0.5 overwrite /etc/shadow Bela Lubkin (Oct 12)
- Xerox DocuColor 4 LP D.O.S Jason Lutz (Oct 13)
- Re: SCO OpenServer 5.0.5 overwrite /etc/shadow Bela Lubkin (Oct 11)
- Security of "Virtual Network Computer" Mikael Olsson (Oct 12)
- Re: Security of "Virtual Network Computer" Cameron Simpson (Oct 12)
- Re: Security of "Virtual Network Computer" Dan Foster (Oct 12)
- Re: Security of "Virtual Network Computer" Luca Berra (Oct 13)
- Finjan Alert: WinNT.Infis Trojan by way of Tim Wieneke (Oct 13)
- The old "." problem nblasgen () NICK REFRACT COM (Oct 13)
- Re: The old "." problem David Zverina (Oct 14)
- Re: The old "." problem S.Faust (Oct 16)
- Gauntlet 5.0 BSDI warning Keith Young (Oct 18)
- Re: Gauntlet 5.0 BSDI warning Strange (Oct 18)
- Re: Gauntlet 5.0 BSDI warning Keith Young (Oct 18)
- Email virus on the prowel Albert Hopkins (Oct 19)
- Another Microsoft Java Flaw Disovered Gary McGraw (Oct 14)
- Administrivia Elias Levy (Oct 14)