[thelist] anyone know how to convert http://3518332311/ into something meaningful?ingful?

Ok, first off, I had no idea that this would actually translate into a
valid IP address from a DNS server point of view. I'm going to check out
RFC's and see how DNS actually handles this.. wack.

Second is something a little more serious, and I want to know if this
makes sense.(Warning, my IE knowledge is limited, so bear with me :) In
IE there are different security settings for different 'zones' if memory
serves correctly. One zone is an "Internet Zone" and one is "Intranet
Zone" and one is "Local Zone", and each of them have a varying amount of
security with "Internet Zone" having the highest security settings,
Intranet next, then Local zone with the lowest. You can run more
dangerous ActiveX controls and Java applets in an Intranet zone than you
could in the Internet Zone usually.

Now how IE can tell if you're in the Intranet Zone or Internet Zone is a
couple of things I imagine: One of them being if the third level domain
name is typed in by itself(you type in barney, knowing that barney is a
server on your LAN), its on your intranet, the other being, if you type
in something.yourdomain.com, in either case, it won't go off the LAN to
get the data, whereas www.yahoo.com is not the same domain as you, and
typing in a server name, 'foo' will hit a search engine or get 'www.'
and '.com' attached to it if the browser can't find it on the LAN. Or if
you're not using a domain name, but rather an IP address, it will go
through you're default gateway(usually a router, and hence the internet;
or your LAN gateway) and get the data. Either way, it treats an IP
address as an Internet Zone site, therefore with higher security, and
more protection for you.

Ok, so blah blah blah Dan, what the hell is the point? Well if what I'm
thinking is correct, you could link a number like this to a site that
could run a rouge(?) applet or activex control that normally
your(Internet Zone) security settings wouldn't allow to be run, because
even though it is (numerically) an IP address, IE can't tell because
there aren't any .(dots) seperating the numbers.

So, you could click on a link(which could be hidden with javascript
unless you checked source) on a website that led you to another page
where a hostile applet or control was run without the high security in
IE(*ahem*) that your Internet zone usually has, and that applet or
control could seriously screw things up.

Does that make sense or seem practical?... OK, I just tried it in IE,
and indeed, the site scott had in his post was listed as in my 'intranet
zone' like I thought.

Although I've never seen this on Bugtraq or a related site, I would
assume that someone else has addressed this? If not, its a pretty big
security hole. Can anyone else with more knowledge of IE and windows
security chime in on this one, and tell me if I'm totally wrong about
this whole thing?

Interesting to say the least..

.djc.

rudy limeback wrote:

> i know this doesn't equal 3518332311 but try http://3485573889 and
> http://207.193.163.1 -- they both bring up the same site