[HN Gopher] Iconv, set the charset to RCE: Exploiting the glibc ...
       ___________________________________________________________________
        
       Iconv, set the charset to RCE: Exploiting the glibc to hack the PHP
       engine
        
       Author : todsacerdoti
       Score  : 57 points
       Date   : 2024-05-27 11:44 UTC (11 hours ago)
        
 (HTM) web link (www.ambionics.io)
 (TXT) w3m dump (www.ambionics.io)
        
       | kennydude wrote:
       | Might be a little naive but this looks to be mostly exploited by
       | blindly trusting user input which pretty much always should be
       | avoided
        
       | rwmj wrote:
       | Can someone explain how the "hello world" prefixing example
       | works? I assume it has to do with converting a base64 encoded
       | string to a different charset then base64 decoding but I don't
       | understand how that would get extra characters.
        
         | gwillem wrote:
         | Some encodings add a prefix, which then get sanitised by the
         | liberal base64_decode.
         | https://www.synacktiv.com/en/publications/php-filters-chain-...
        
       | stabbles wrote:
       | What is the relationship between glibc's iconv and libiconv? Both
       | are GNU. They have the same API (but different symbols). Is
       | glibc's iconv more or less a copy of libiconv code? Do they have
       | the same bugs?
        
         | tredre3 wrote:
         | I can't really tell you the why, but they're different
         | implementations with different bugs.
        
       ___________________________________________________________________
       (page generated 2024-05-27 23:01 UTC)