[Esd-l] problem with "<IMG" being defanged in uuencoded content
John D. Hardin
jhardin at impsec.org
Fri Feb 28 19:40:57 PST 2003
On Fri, 28 Feb 2003, Peter van Campen wrote:
> a few days ago a user showed me a print-out of part of uuencoded content
> (not literally typed over):
>
> MABCDHKP<BV%^*OVXXMKJUJK<M<LKJMMNBBBBBNKJNKJNKHGVC
> MHKP<BV%^*OVXXMKJUJK<M<LKJMMNBBBBJMGHYTFRDCHGCVHLK
> MABCDHKP<KLGJHGYUTVCRDVBJHM<PL"L%^*OVXXJMMNBBBBBNK
> MABCDHKP<BV%^*OVXXM<DEFANGED_IMG%<M<LKJMMNBBBBBNKJNKJNKHGVC
> MFHJMGFHGYTRGCVNGVHYYHKP<BV%^*OVXXMKJUJK<M<LKJMMNB
>
> Note the "DEFANGED" between the "<" and the "IMG".
oh, bother.
> Is there a solution to this (regognizing uuencoded content),
Yeah, take a look at the dev snapshot. I've changed the UUE exclusion
to encompass all of the HTML defanging instead of just the
byte-encoding decoding. I've also tightened up the UUE line test a bit
to reduce false hits. It will still incorrectly defang stuff in the
very last line of the UUE file because I'm still being a bit lazy...
:)
Thanks for the report.
--
John Hardin KA7OHZ ICQ#15735746 http://www.impsec.org/~jhardin/
jhardin at impsec.org pgpk -a jhardin at impsec.org
key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
...voice or no voice, the people can always be brought to the bidding
of the leaders. That is easy. All you have to do is tell them they
are being attacked and denounce the pacifists for lack of patriotism
and exposing the country to danger. It works the same way in any
country.
-- Hermann Goering
-----------------------------------------------------------------------
83 days until The Matrix Reloaded
More information about the esd-l
mailing list