Jump to content

I Am God

Horza­

By Horza­
in Everything Else

 Share

Recommended Posts

Sparda Newbie

Sparda

Posted
Posted

The most likly method he used was most likly not a bug in phpBB. It is probably a feature in MySQL, some thing along the lines of using a charater at the end of his name that MySQL egnors once placed in a table so when phpBB checks for users it doesn;t find any with the same name, but when inserted in to the table the invalid charater is removed and so he ends up with the same name as another user, this is just a guess by the way.

Link to comment
Share on other sites
Guest

Guest

Posted
Posted
The most likly method he used was most likly not a bug in phpBB. It is probably a feature in MySQL, some thing along the lines of using a charater at the end of his name that MySQL egnors once placed in a table so when phpBB checks for users it doesn;t find any with the same name, but when inserted in to the table the invalid charater is removed and so he ends up with the same name as another user, this is just a guess by the way.

yeh you are correct, except it isnt a mySql bug its a bug in windows, windows doesnt handle the soft hyphon correctly, and as a result it allows me to place that on the end of a username to register it twice. This bug can be danerouse if a system uses a certian username to give you the creditials that you should have when login.

Link to comment
Share on other sites
Sparda Newbie

Sparda

Posted
Posted
The most likly method he used was most likly not a bug in phpBB. It is probably a feature in MySQL, some thing along the lines of using a charater at the end of his name that MySQL egnors once placed in a table so when phpBB checks for users it doesn;t find any with the same name, but when inserted in to the table the invalid charater is removed and so he ends up with the same name as another user, this is just a guess by the way.

yeh you are correct, except it isnt a mySql bug its a bug in windows, windows doesnt handle the soft hyphon correctly, and as a result it allows me to place that on the end of a username to register it twice. This bug can be danerouse if a system uses a certian username to give you the creditials that you should have when login.

Are you been serise? The Hak.5 web server is not running windows.

Link to comment
Share on other sites
Sparda Newbie

Sparda

Posted
Posted
my bad it isnt windows its the web browser that is affected by this,

What you describe would not work no matter what web browser you use, it is prccessed server side, so you have to trick the web server in to thinking that no user exsist with the name you enterd but at the same time when it acepts it it changes the name you enterted in to another name of an exsisting user. The method i described would work. There might be a phpBB bug to do this, such as <guess> entering a valid name submiting this valid name but also entering some invalid data, and change the name you entered but validate the invalid data you entered. </guess> That method is highly unlikly to work, as it would relie on phpBB checking the valid data the first them but then not bothering to check it the second time. I havn't tested it, but i'm fairly certian phpBB checkes the validicity of every field every time you press submit.

Link to comment
Share on other sites
Guest

Guest

Posted
Posted

this doesnt just afect phpBB it affects anything that allows you to register a username.

A severe problem with the way browser's (both Microsoft Internet Explorer and Mozilla Firefox are effected) translate the soft-hyphen (alt + 0173) character has been brought to light which malicious users could utilise alongside a multitude of injection methods as a way to gain un-authorised access and or to spoof content on websites.
Link to comment
Share on other sites
Shaun Newbie

Shaun

Posted
Posted
this doesnt just afect phpBB it affects anything that allows you to register a username.

A severe problem with the way browser's (both Microsoft Internet Explorer and Mozilla Firefox are effected) translate the soft-hyphen (alt + 0173) character has been brought to light which malicious users could utilise alongside a multitude of injection methods as a way to gain un-authorised access and or to spoof content on websites.

Is this actually a problem though? The HTML specs say "If a line is not broken at a soft hyphen, the user agent must not display a hyphen character. For operations such as searching and sorting, the soft hyphen should always be ignored." which means it's shouldn't show a hyphen. I suppose the problem is it isn't encoded as an HTML entity, not sure if it's supposed to be or not. This is the way it happened I think, since I just make a duplicate Sparda.

Link to comment
Share on other sites
Guest

Guest

Posted
Posted

the problem is that the browser doesnt know how to treat the soft hyphen correctly, it should ignore it like you said but it doesnt seem to do that, because if it did ignore it it wouldnt be passed onto the php script in your username like it is.

(Did i open a can of worms with this, now everyone is going to be registering usernames that are already registered :D )

Link to comment
Share on other sites
ShinmaRyuu Newbie

ShinmaRyuu

Posted
Posted
the problem is that the browser doesnt know how to treat the soft hyphen correctly, it should ignore it like you said but it doesnt seem to do that, because if it did ignore it it wouldnt be passed onto the php script in your username like it is.

(Did i open a can of worms with this, now everyone is going to be registering usernames that are already registered :D )

With great power comes great responsibility.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...