Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Vulnerability Development mailing list archives

Re: .com
From: dullien () gmx de
Date: Tue, 2 Oct 2001 11:10:19 -0700
Hey Pauli,

somehow we're replicating our work ;)

PO> dunno if this has already occurred in people's mind but
PO> as there is the nice similarity between the ancient .com
PO> executable file extension and the tld .com ignorant
PO> clients could be fooled by sending executables that
PO> are named after popular .com www-sites. clear enough?-)

Yes, and most funnily: You don't need to actually have a .com file
in there - The operating system checks for the MZ/ZM signature,
and then hands the file over to the .EXE handler if present. Therefore
you can just rename any .EXE file .com and it will properly execute.

Cheers,
Thomas


-- 
Mit freundlichen Grüssen
dullien () gmx de                            mailto:dullien () gmx de

  By Date           By Thread  

Current thread:
  • .com Pauli Ojanperä (Oct 02)
    • Re: .com Nexus (Oct 02)
    • Re: .com dullien (Oct 02)
      • Re: .com Enrique A. Sanchez Montellano (Oct 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]