WebCat 4.0.1 HTTP_REFERRER over 255 char bug

This WebDNA talk-list message is from

2000


It keeps the original formatting.
numero = 34396
interpreted = N
texte = I have checked and the instances of GPF's I am seeing do include longer than 255 character referrers (the example I submitted through your bug- tracking software was 310 characters). Since this is a buffer overflow issue (probably) can we expect a quick fix? Also, I came in this AM and found that the system was incommunicado (webcatservice was running but all pages served through WebCat yielded 500 Error's). I have turned on debug logging again... ;~(John PeacockWebDNA Support wrote: > > >And where is it located for NT? I have reported multiple GPF's with > >4.0.1; I would think that at least something should be emitted to the > >ErrorLog prior to the DBServer.exe dying. > > It is in the same folder as DBServer.exe, because IIS does not give > us enough information to know where virtual roots are. As for GPFs, > by definition that is something that our code never sees, so there is > no error log entry for it. You can turn on extended debug logging in > the prefs to catch the last hit before a GPF. That writes out to a > file called WebCatalog.debug > > We have run into one repeatable GPF which involves a referrer longer > than 255 characters. It seems that newer browsers allow longer > referrer strings, so if you happen to have a
or > just which has a lot of data in it, then on the next page > *after* the form is submitted you can click any hyperlink and cause > the browser to send extra-long referrer data. > > Technical Support ********************************** > Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) > 16855 West Bernardo Drive, #380 | ------------------------- > San Diego, CA 92127 | Software & Site Development > WebCatalog Support: (858) 675-0632 | http://www.smithmicro.com > Fax: (858) 675-0372 ********************************** > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
  1. WebCat 4.0.1 HTTP_REFERRER over 255 char bug (John Peacock 2000)
I have checked and the instances of GPF's I am seeing do include longer than 255 character referrers (the example I submitted through your bug- tracking software was 310 characters). Since this is a buffer overflow issue (probably) can we expect a quick fix? Also, I came in this AM and found that the system was incommunicado (webcatservice was running but all pages served through WebCat yielded 500 Error's). I have turned on debug logging again... ;~(John PeacockWebDNA Support wrote: > > >And where is it located for NT? I have reported multiple GPF's with > >4.0.1; I would think that at least something should be emitted to the > >ErrorLog prior to the DBServer.exe dying. > > It is in the same folder as DBServer.exe, because IIS does not give > us enough information to know where virtual roots are. As for GPFs, > by definition that is something that our code never sees, so there is > no error log entry for it. You can turn on extended debug logging in > the prefs to catch the last hit before a GPF. That writes out to a > file called WebCatalog.debug > > We have run into one repeatable GPF which involves a referrer longer > than 255 characters. It seems that newer browsers allow longer > referrer strings, so if you happen to have a or > just which has a lot of data in it, then on the next page > *after* the form is submitted you can click any hyperlink and cause > the browser to send extra-long referrer data. > > Technical Support ********************************** > Smith Micro, Internet Solutions Div | eCommerce (WebCatalog) > 16855 West Bernardo Drive, #380 | ------------------------- > San Diego, CA 92127 | Software & Site Development > WebCatalog Support: (858) 675-0632 | http://www.smithmicro.com > Fax: (858) 675-0372 ********************************** > > ------------------------------------------------------------- > This message is sent to you because you are subscribed to > the mailing list . > To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/ John Peacock

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

[OT] Yahoo! Front Page (2002) [tcp connect]-dumb question? (1998) WebCommerce: Folder organization ? (1997) tcpconnect and ftp (2002) Logging users (1998) Merging databases (1997) Problems passing [SKU] with $Replace in 2.0 (1997) mac hack (1997) form data submission gets truncated (1997) Database Program (1997) [OT] 'Email this story to a friend' (2003) Tax Laws for Online Sales (2003) Pre-flight public flag (1997) [WebDNA] A note about the WebDNA Server 8.0.2 installer and Admin on Ubuntu 14.04 ... (2015) WCS Newbie question (1997) Too Much Info (1998) What am I missing (1997) Custom WebCat Prefs ... (1997) searching more then one (1999) WC2b15 File Corruption (1997)