Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
RE: Windows Command Processor CMD.EXE Buffer Overflow
From: Luis Alberto Cortes Zavala (napasnsecuritynation.com)
Date: Fri Oct 20 2006 - 14:33:00 CDT
YEah! Buffer Overflow Windows XP SP2
I Hill debug this.
Luís Alberto Cortes Zavala
IT / Security Consultant
De: listbouncesecurityfocus.com [mailto:listbouncesecurityfocus.com] En
nombre de The SNiFF
Enviado el: Viernes, 20 de Octubre de 2006 03:58 a.m.
Asunto: Re: Windows Command Processor CMD.EXE Buffer Overflow
> Copy-paste the following line in cmd.exe and execute it..
> (it is a single command, has been split into multiple lines for
> readability sake).
> %COMSPEC% /K "dir
> (260 characters of 'A's)
Tried it on Win2k3 SP1:
C:\Documents and Settings\Administrator>%COMSPEC% /K
The filename or extension is too long.