Message 391390 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	eryksun
Recipients	Orbital, bugale bugale, corona10, eryksun, paul.moore, shreyanavigyan, steve.dower, tim.golden, zach.ware
Date	2021-04-19.19:36:02
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<1618860962.74.0.306800754081.issue43284@roundup.psfhosted.org>
In-reply-to

Content
> But isn't calling CMD's VER command risky? A process can overwrite its > PEB OSMajorVersion, OSMinorVersion, and OSBuildNumber. As long as VER is executed without quotes, the shell will not search for an external command. CMD is not going to intentionally overwrite the OS version and build number in the PEB, so that would be due to some kind of weird, unlikely bug. (CMD's code base is stable. It hasn't seen a new feature since MKLINK was added 15 years ago.) If malware messes with this, for some strange reason, it's not Python's problem. For example, I'll attach a debugger and do just that: 0:000> ?? @$peb->OSMajorVersion = 11 unsigned long 0xb 0:000> ?? @$peb->OSMinorVersion = 0 unsigned long 0 0:000> ?? @$peb->OSBuildNumber = 0x8000 unsigned short 0x8000 C:\>ver Microsoft Windows [Version 11.0.32768.0] Hi from the future. :) > If the cmd has been set to compatibility mode "%SystemRoot%\System32\cmd.exe" is exempt from compatibility mode (e.g. the "__COMPAT_LAYER" environment variable).

> But isn't calling CMD's VER command risky? A process can overwrite its 
> PEB OSMajorVersion, OSMinorVersion, and OSBuildNumber. 

As long as VER is executed without quotes, the shell will not search for an external command. CMD is not going to intentionally overwrite the OS version and build number in the PEB, so that would be due to some kind of weird, unlikely bug. (CMD's code base is stable. It hasn't seen a new feature since MKLINK was added 15 years ago.) If malware messes with this, for some strange reason, it's not Python's problem. For example, I'll attach a debugger and do just that:

    0:000> ?? @$peb->OSMajorVersion = 11
    unsigned long 0xb
    0:000> ?? @$peb->OSMinorVersion = 0
    unsigned long 0
    0:000> ?? @$peb->OSBuildNumber = 0x8000
    unsigned short 0x8000

    C:\>ver
    Microsoft Windows [Version 11.0.32768.0]

Hi from the future. :)

> If the cmd has been set to compatibility mode 

"%SystemRoot%\System32\cmd.exe" is exempt from compatibility mode (e.g. the "__COMPAT_LAYER" environment variable).

History
Date	User	Action	Args
2021-04-19 19:36:02	eryksun	set	recipients: + eryksun, paul.moore, tim.golden, zach.ware, steve.dower, corona10, bugale bugale, shreyanavigyan, Orbital
2021-04-19 19:36:02	eryksun	set	messageid: <1618860962.74.0.306800754081.issue43284@roundup.psfhosted.org>
2021-04-19 19:36:02	eryksun	link	issue43284 messages
2021-04-19 19:36:02	eryksun	create