Re: [Full-disclosure] Windows XP cmd.exe crash
long file name exploit existing since 2001-2002 On Fri, Jun 28, 2013 at 6:47 PM, Pedro Laguna pedlag...@hotmail.co.ukwrote: Ey list! Just something quick and funny crash I found long time ago and it may give some of you something to check this weekend. Windows XP cmd.exe crash when trying to copy files with a very long name. The following BATCH file can crash the cmd.exe process: --- crash.bat -- @echo off echo test data.txt copy %CD%\data.txt \\.\C:\A.txt REM copy %CD%\data.txt \\?\C:\A.txt -- / crash.bat It only happens with copy but not with move command and with both \\.\ and \\?\ prefixes. I'm not an expert on these fields so I don't know if it will be possible to exploit it, maybe some of you with crazy kung fu skills can do it. If not, it's just a weird behaviour for the cmd.exe and given that is less than a year to the end of life of the Windows XP cannot see any harm sharing it. Ta! -- Pedro Laguna ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Printer in the DMZ
:-) Awesome stuff guys :-) Thank you for making my day ... On Mon, Aug 27, 2012 at 3:32 PM, Benji m...@b3nji.com wrote: Yup, they're all mine. Congrats on ur diskovery of the century. You know what you should do? you should make some sort of database for google dorks, like hmm, maybe call it GHDB? Impressive find, very impressed. If it's people like you that miss the point of my posts, to point out how absurd this list is and it's many failings, then I think I have succeeded. Stay classy, keep fighting whatever fight you're fighting. On Mon, Aug 27, 2012 at 5:45 PM, Igor Igor unclyi...@gmail.com wrote: Robots.txt not supported in any printer.. too bad, all listed in all major search engine Benji, are they belong to you ? You are the only one that I can think off that would put that in a DMZ 152.1.23.62 - HP ColorLaserJet 2605dn 152.1.31.62 - HP ColorLaserJet CP4005 152.1.32.10 - Dell 5230n Laser Printer 152.1.32.53 - HP Designjet T1100ps 44in 152.1.40.7 - HP LaserJet P2055dn 152.1.40.8 - HP LaserJet P2055dn 152.1.40.14 - HP LaserJet P2055dn 152.1.40.16 - HP LaserJet P2055dn 152.1.40.34 - HP LaserJet P2055dn 152.1.40.42 - HP LaserJet P2055dn 152.1.40.54 - HP Color LaserJet 4700 152.1.40.88 - HP LaserJet P2055dn 152.1.40.97 - HP LaserJet P2055dn 152.1.40.120 - HP LaserJet 2300 152.1.40.172 - HP LaserJet P2055dn 152.1.40.203 - HP LaserJet P2055dn 152.1.40.222 - HP LaserJet P2055dn 152.1.40.232 - HP LaserJet P2055dn 152.1.40.249 - HP LaserJet P2055dn 152.1.55.155 - HP Color LaserJet CP4525 152.1.72.177 - Dell Color Laser 3110cn 152.1.72.244 - HP Procurve 152.1.111.13 - Brother HL-5370DW 152.1.111.136 - Brother HL-5250DW 152.1.111.189 - RICOH Pro 1107EX 152.1.117.197 - HP Color LaserJet CP4525 152.1.120.67 - HP LaserJet P3005 152.1.120.89 - HP LaserJet P2055dn 152.1.120.205 - HP LaserJet P3005 152.1.120.208 - HP LaserJet 4350 152.1.152.23 - HP Color LaserJet CP3505 152.1.181.30 - HP Color LaserJet CM3530 MFP 152.1.198.230 - HP LaserJet P3015 152.1.228.225 - HP LaserJet 9050 152.1.228.229 - HP LaserJet 9050 152.1.228.230 - HP LaserJet 9050 152.14.71.92 - HP Color LaserJet 4700 - 1g0r ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
[Full-disclosure] Tricky Shellcode
Can anyone help in solving what this shellcode does? \x31\xC0\x50\x68\x70\x79\x71\x78\x68\x72\x77\x27\x71\x68\x77\x79\x74\x74\x68\x25\x72\x25\x24\x68\x24\x24\x20\x24\x68\x75\x78\x76\x78\x68\x73\x79\x75\x79\x68\x23\x76\x74\x71\x68\x25\x71\x70\x73\x68\x70\x75\x74\x75\x68\x75\x24\x78\x73\x68\x25\x77\x76\x71\x68\x22\x72\x73\x23\x68\x24\x76\x27\x77\x68\x73\x75\x76\x79\x68\x20\x79\x70\x25\x68\x73\x72\x75\x77\x68\x27\x77\x71\x24\x68\x27\x22\x75\x73\x68\x23\x79\x70\x76\x68\x75\x75\x24\x70\x68\x22\x23\x71\x27\x68\x25\x79\x71\x22\x68\x22\x72\x27\x25\x68\x75\x23\x22\x77\x68\x22\x24\x75\x76\x68\x27\x25\x20\x24\x68\x75\x70\x27\x73\x68\x77\x20\x79\x24\x68\x72\x73\x70\x23\x68\x70\x78\x70\x23\x68\x78\x24\x71\x71\x54\x5E\x8B\xFE\x8B\xD7\xFC\xB9\x80\x00\x00\x00\xBB\x41\x00\x00\x00\x31\xC0\x50\xAC\x33\xC3\xAA\xE2\xFA\x54\x5E\xCC Thanks JT ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] Facebook Attach EXE Vulnerability
can't believe such was on FB wahahaha !!! lol rofl ... When was this discovered and fixed ? On Thu, Oct 27, 2011 at 1:02 AM, Nathan Power n...@securitypentest.comwrote: - 1. Summary: When using the Facebook 'Messages' tab, there is a feature to attach a file. Using this feature normally, the site won't allow a user to attach an executable file. A bug was discovered to subvert this security mechanisms. Note, you do NOT have to be friends with the user to send them a message with an attachment. - Read the rest of this advisory here: http://www.securitypentest.com/2011/10/facebook-attach-exe-vulnerability.html Enjoy :) Nathan Power www.securitypentest.com ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Re: [Full-disclosure] I know its old, but what the heck does this do... (exposing a tool...)
Use this link to decode the shellcode ... --- http://www.dolcevie.com/js/converter.html This executes the perl code on the local machine :D On Tue, Oct 25, 2011 at 9:50 PM, xD 0x41 sec...@gmail.com wrote: Hello List, Id like people to also, like this thread asks, to pls give some opinion, other than mine.. wich, i am yet to make; http://www.hackerthreads.org/Topic-5973 Please look at this .c code on here, if you wish, and tell me, why A. It is still in circulation, seeminlgly, on MANY MANY boxes B. people still seem to try keep it private :s This morning, a friend from webhostingtalk.com ,asked me to take a look. I have and, i can only sofar say, once i decrypt the shellcode, ill know abit more.. altho , i rmember this thing, and, somany people were after it, people were paying for it, this is first time i have seen it actually disclosed tho, admittedly only looked today. If skiddies are using it to ddos things, I want to makesure i can expose it, and kill the threats. thankyou. xd .// exposing bullshit as i ride! ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/ ___ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/