PowerFuzzer / Patches / #2 UNICODE/ASCII Error

#2 UNICODE/ASCII Error

Milestone: Unstable_(example)

Status: open

Owner: nobody

Labels: Widget (example) (2)

Priority: 5

Updated: 2008-08-13

Created: 2008-08-13

Creator: Anonymous

Private: No

This patch resolves an error in lswww.py where UNICODE/extended ASCII strings cannot be sent to the victim because Python recognizes them as being out of bounds (>d127). The patch switches the attack string to UNICODE so that it may be sent.

Discussion

Nobody/Anonymous - 2008-08-13

Fix UNICODE/ASCII error

lswww.py.patch

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

Nobody/Anonymous - 2008-08-13

Logged In: NO

A better patch that would prevent a new patch for some of the other modules would be:

*** powerfuzzer/lswww.py Fri Jun 27 18:14:08 2008
--- powerfuzzer2/lswww.py Thu Jul 24 13:11:34 2008
***************
*** 370,375 ****
--- 370,378 ----

def inzone(self,url):
"""Make sure the url is under the root url"""
+ temp=self.root
+ if isinstance(temp, unicode):
+ self.root=str(temp.encode("iso8859-15"))
if(url.find(self.root,0)==0):
return 0
else:

If you would like to refer to this comment somewhere else in this project, copy and paste the following link:

UNICODE/ASCII Error

Group

Searches

Help

#2 UNICODE/ASCII Error

Discussion