Home page logo

fulldisclosure logo Full Disclosure mailing list archives

MAX_PATH is 260 chars not 248
From: "Hu Ugh" <ugh404 () hotmail com>
Date: Mon, 08 Mar 2004 21:15:28 +0000

So close...

Thanks to the programmer who wrote CreateDirectoryA() I can't exploit a buffer overflow.

"There is a default string size limit for paths of 248 characters. This limit is related to how the CreateDirectory function parses paths."

God damn. MAX_PATH is 260 chars you lazy bum!!!

I need 8 more bytes in the path to exploit it.

Maybe I should report this as a bug to MS so they can fix it and make my exploit work? :D

Store more e-mails with MSN Hotmail Extra Storage – 4 plans to choose from! http://click.atdmt.com/AVE/go/onm00200362ave/direct/01/

Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

  By Date           By Thread  

Current thread:
  • MAX_PATH is 260 chars not 248 Hu Ugh (Mar 08)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]