Vulnerability Development mailing list archives
long file names in explorer.exe
From: kj () INDIFFERENCE ORG (kj)
Date: Wed, 26 Apr 2000 20:22:20 -0700
Hey, all I have done a few tests on NT 4.0 (SP5) and Windows 2000 (build 2128) creating long file name extensions and trying to copy and view them in explorer.exe. Both OS' did not crash when the tool tips displayed the long extensions, but I did notice other "odd" behavior. I had 4 files that I was playing with c.`perl -e 'print "a" x 232'` e.`perl -e 'print "a" x 240'` e.`perl -e 'print "f" x 250'` f.`perl -e 'print "f" x 247'`
From samba to WINNT
Copying the files to another computer through network neighbourhood: "c.aaa..." recieved "file extension is too long" "e.aaa..." recieved an error that "file cannot find the specified path..." "e.fff..." became "E~lh.fff" "f.fff..." became "F~ki.fff" Copying to the same directory as what the files were already in (on samba): "c.aaa..." crashed explorer.exe "e.aaa..." crashed explorer.exe "e.fff..." became "E~LH.FFF" "f.fff..." became "F~KI.FFF" I have only tested samba and WINNT. I have yet to try Win2000...though I plan to tomorrow. K.J. -- "Never argue with an idiot. He will take you down to his level, and beat you with experience."
Current thread:
- Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions., (continued)
- Re: Securax Security Advisory: Windows98 contains a serious buffer overflow with long filenameextensions. Zoa_Chien (Apr 21)
- Re: Securax Security Advisory: Windows98 contains a seriousbuffer overflow with long filenameextensions. Markus Kern (Apr 22)
- Re: Securax Security Advisory: Windows98 contains a seriousbuffer overflow with long filenameextensions. Zoa_Chien (Apr 23)
- koules again Kotz (Apr 21)
- Re: koules again Ron DuFresne (Apr 21)
- Re: No-Exec Stack Smashing 101 Granquist, Lamont (Apr 25)
- Re: No-Exec Stack Smashing 101 M.C.Mar (Apr 26)
- limited functionality accounts (was: Re: History Files) Alex Andrews (Apr 25)
- Re: limited functionality accounts (was: Re: History Files) Rob Kouwenberg (Apr 28)
- Re: No-Exec Stack Smashing 101 Granquist, Lamont (Apr 26)
- long file names in explorer.exe kj (Apr 26)
- Re: long file names in explorer.exe Rory Savage (Apr 28)
- Re: long file names in explorer.exe kj (Apr 28)
- Lotus notes + windows98 overflow Alistair Orchard (Apr 27)
- Blind Remote Buffer Overflow Granquist, Lamont (Apr 27)
- Eudora Pro Buffer Overflow testing in progress - help needed. Zoa_Chien (Apr 28)
- Re: Eudora Pro Buffer Overflow testing in progress - help needed. Blue Boar (Apr 28)
- Re: Blind Remote Buffer Overflow Marc (Apr 28)
- Re: Blind Remote Buffer Overflow Ralph The Wonder Llama (Apr 28)
- Re: Blind Remote Buffer Overflow Matthew R. Potter (Apr 28)
- Re: Blind Remote Buffer Overflow Sebastian (Apr 29)