Hosting Provided By

Re: shell script cgi (summary?)

From: c jones <ojnes33(at)yahoo.com>
Date: Mon Nov 18 2002 - 13:58:24 EST

Thanks to everyone who replied regarding my attempts to stuff shell commands into this line:

> ua=`echo "$HTTP_USER_AGENT" | sed "s#\;##g"`

The summary is that no matter what time of " ' ` characters, shell commands, or termination or escape characters I tried to put into the $HTTP_USER_AGENT field I can't get it to execute commands. It's a surprisingly resilient line of code, most likely due to the "s around the $HTTP_USER_AGENT variable. I wouldn't call this type of programming "safe", but it's not *nearly* as bad as I thought at first.

The $ua variable is not ever used again so there's no other opportunity to exploit it... it's a very useless line of code which should be removed anyway--it just looks very exploitable (and may be by someone out there ;).

Thanks again to everyone that responded, it was very much appreciated & got me thinking in all sorts of different directions.

Regards

Do you Yahoo!?
Yahoo! Web Hosting - Let the expert host your site http://webhosting.yahoo.com Received on Mon Nov 18 19:44:44 2002

This message: [ Message body ]
Next message: Alexandru Balan: "Re: Remote service shutdown in mailenable (newest) Follow up"
Previous message: Ketil Braun Larsen: "Re: Remote service shutdown in mailenable (newest) Follow up"
In reply to: Philip Rowlands: "Re: shell script cgi"
In reply to c jones: "shell script cgi"
Next in thread: Brian Fury: "Re: shell script cgi (summary?)"
Reply: Brian Fury: "Re: shell script cgi (summary?)"
Reply: Brian Hatch: "Re: shell script cgi (summary?)"
Reply: Philip Rowlands: "Re: shell script cgi (summary?)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:37 EDT

Do you need help?