what you don't know can hurt you
Showing 1 - 20 of 20 RSS Feed

Files Date: 1999-12-09

debian.htdig.txt
Posted Dec 9, 1999

The version of htdig that was shipped in Debian GNU/Linux 2.1 has a problem with calling external programs to handle non-HTML documents: it calls the external program with the document as a parameter, but does not check for shell escapes. This can be exploited by creating files with filenames that include shell escapes to run arbitraty commands on the machine that runs htdig. Debian security homepage here.

tags | shell
systems | linux, debian
MD5 | a8fd02d13b305694bfbadced3f58307d
dsit_workshop.pdf
Posted Dec 9, 1999
Authored by David Dittrich, Clarissa Cook, Richard Kemmerer

Results of the Distributed-Systems Intruder Tools Workshop (Nov 2-4, 1999). Several distributed intruder tools are in widespread use now, and the technology is maturing. As a result, a single command from an attacker can result in tens of thousands of concurrent attacks.

tags | denial of service
MD5 | b69cb60c78ff79ee69d4513e534245f9
blitznet.tgz
Posted Dec 9, 1999
Authored by Phreeon

Blitznet launches a distributed syn flood attack with spoofed source IP, without logging.

tags | denial of service, spoof
MD5 | c58067ac29321e40ba72d357c136f798
trinoo.tgz
Posted Dec 9, 1999

Trinoo daemon source - Implements a distributed denial of service attack. Controlled via UDP.

tags | denial of service, udp
MD5 | a7d1bda7617f17b021617ae3c782fc6e
nscache-0.2pl1.tgz
Posted Dec 9, 1999
Authored by Stefan Ondrejicka | Site idata.sk

nscache is a simple program to browse the Netscape cache directory with a GTK UI. It shows the contents of the browser cache in a three level hierarchy of files: protocols, servers and documents. nscache permits you to files to the cache, remove files or gather various information about specific files.

Changes: Minor bug fixes and enhancements.
tags | tool, protocol
systems | unix
MD5 | b5debcc8ce470be20cef6027f4117b52
snort-1.5.tar.gz
Posted Dec 9, 1999
Authored by Martin Roesch | Site clark.net

Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules based logging and can perform content searching/matching in addition to being used to detect a variety of attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capabilty, with alerts being sent to syslog, a seperate "alert" file, or as WinPopup messages via Samba's smbclient.

Changes: detection and preprocessor plugins (think packet sniffing API), rule file variables and includes, preprocessors, TCP session logging, new detection capabilities (IP options, multiple content strings per rule), new protocol decoders (I4L-ISDN, NULL), new http preprocessor normalizes web traffic, defeating evasive web scanners like whisker.pl, faster and more accurate IP and TCP option decoders, etc.
tags | tool, overflow, cgi, sniffer
MD5 | 3272654ca7edbdf195f2532a7047ce7d
Bastille-0.94.tar
Posted Dec 9, 1999
Authored by Jay Beale | Site bastille-linux.org

Bastille Linux aims to be the most comprehensive, flexible and educational Security Hardening Program for Red Hat Linux. Virtually every task it performs is optional, providing immense flexibility. It also educates the user regarding the topic at hand before asking any question. The interactive nature allows the program to be more thorough when securing, while the educational component produces an admin who is less likely to compromise the increased security.

Changes: A trivial network device promiscuous mode checker (to be improved and augmented by other "Scanners," or small intrusion detection programs) and bug fixes.
systems | linux, redhat
MD5 | dd6db2c1e7b14f782b8a2c636c954e54
xscreensaver-3.22.tar.gz
Posted Dec 9, 1999
Authored by Jamie Zawinski | Site jwz.org

XScreenSaver is a modular screen saver and locker for the X Window System. It is highly customizable and allows the use of any program that can draw on the root window as a display mode. More than 100 display modes are included in this package.

Changes: Fixes for some bugs in xscreensaver-demo, the Motif version of xscreensaver-demo has been rewritten to match the new GTK version, and the Athena toolkit is no longer supported.
tags | root
systems | unix
MD5 | 10d7848554a9fb64b522aee944ef42ab
gShield-1.0.tgz
Posted Dec 9, 1999
Authored by R. Gregory | Site muse.linuxgeek.org

gShield (formerly Godot's Modified Modular Firewall), is an aggressive, modular, ipchains-based firewall script. Features include: easy configuration through a BSD-style configuration file, optional IPmasq support, TCPwrapper-like funtionality for service access, and extremely restrictive defaults. It hopes to make administrating a comprehensive firewall easier, as well as offering robust protection.

Changes: The name has been changed to gShield (from GMMF), configuration is now BSD-style, the code has been cleaned up, and security enhancements have been made.
tags | tool, firewall
systems | linux, bsd
MD5 | c962810bef9364e5982312da3ecf0f00
syslog-ng-1.3.7.tar.gz
Posted Dec 9, 1999
Authored by Balazs Scheidler | Site balabit.hu

syslog-ng as the name shows is a syslogd replacement, but with new functionality for the new generation. The original syslogd allows messages only to be sorted based on priority/facility pair, syslog-ng adds the possibility to filter based on message contents using regular expressions. The new configuration scheme is intuitive and powerful.

Changes: A fix for a small SIGHUP bug affecting BSDs, and some new options.
tags | system logging
systems | unix
MD5 | c36edf2f5db4cf2bb0fe9e9b27f2117e
rtscan.pl
Posted Dec 9, 1999
Authored by Yo_Soy

Perl script which scans a remote system for about 150 trojans. Based on Evil Dead's trojan port list.

tags | tool, remote, scanner, trojan, perl
systems | unix
MD5 | 3a6620ae5f40d180749c5edc6f8a7c72
getcode010.lzh
Posted Dec 9, 1999
Authored by Unyun, shadowpenguin | Site shadowpenguin.backsection.net

Getcode assists you in coding windows exploits by getting the codes for jmp reg,call reg,push reg;ret from some loaded dlls.

systems | windows
MD5 | 210e177dc620f8156becafff0ce8bd90
ie.frameloop.txt
Posted Dec 9, 1999
Authored by Underground Security Systems Research

Microsoft Internet Explorer 4.x and 5.x - Frame Loop Vulnerability. By creating an endless loop of frames, it is possible to create a malicious webpage that when visited by an IE user all of their system resources are devoured and depending on the system its probable that the machine will crash and reboot itself. Exploit code included.

tags | exploit
MD5 | a7788b4d0249eb17375d1a6adcbbc8e0
cookleak.htm
Posted Dec 9, 1999
Authored by Richard Smith | Site tiac.net

Since the invention of Web browser cookies by Netscape, the claim has always been made that they are anonymous and cannot be associated with any personal information unless someone provides this information. In this write-up, I will present a technique in which browser cookies can be matched to Email addresses without people's knowledge. The technique relies on a security hole that is present in both Microsoft's Internet Explorer browser and Netscape's Navigator browser. This technique can be used, for example, to allow a banner ad company to associate an Email address with a "anonymous" profile that has been created for a person as they surf the Web.

tags | paper, web
MD5 | f82c4516188734b8d1b25a7c65c33e7e
nt.security.update.120899.txt
Posted Dec 9, 1999
Authored by winsd

Windows NT security update for December 8, 1999. New vulnerabilities covered include IE 5.0 WPAD Spoofing, IIS ISAPI Filter Plain Text Leak, FTP Serv-U Subject to Denial of Service, and IE 5.0 Subject to Frame Spoofing. Also has info on making certain you are ready for y2k, the MiniZip virus, Babylonia virus, and Y2K-Specific Worms. NTsecurity homepage here.

tags | worm, denial of service, spoof, vulnerability, virus, magazine
systems | windows, nt
MD5 | c310e223167e2b91f5c66022305e91fc
fwlogstat-1.0.tgz
Posted Dec 9, 1999
Authored by Rajeev Kumar | Site geocities.com

This is a perl script which interprets Checkpoint FW1 (V4.0) account logs, obtained from Master management console, or with the 'fw logexport' command. Can be used safely for standalone FW as well.

tags | tool, perl, firewall
systems | unix
MD5 | 1dc94f8b3f14df345ee0ed7031d5493a
portfwd-0.10.tar.gz
Posted Dec 9, 1999
Authored by Everton da Silva Marques | Site nucleo.freeservers.com

Portfwd is a small C++ utility which forwards incoming TCP connections and/or UDP packets to remote hosts. Multiple forwarders can be specified in a flexible configuration file. There is support for FTP forwarding.

Changes: Check on signal handler installation added. Compiling switches and log messages have been improved.
tags | remote, udp, tcp
systems | unix
MD5 | ba592bd5da0d4a1060127cd4a2d8d16e
portfwd-0.7.tar.gz
Posted Dec 9, 1999
Authored by Everton da Silva Marques | Site nucleo.freeservers.com

Portfwd is a small C++ utility which forwards incoming TCP connections and/or UDP packets to remote hosts. Multiple forwarders can be specified in a flexible configuration file. There is support for FTP forwarding.

Changes: Ability to bind to specific addresses, active FTP forwarding, better passive FTP support, and now a single process can listen to multiple ports, thus saving system resources.
tags | remote, udp, tcp
systems | unix
MD5 | cb1d82e4f238d62d0e66da0b0253b964
portfwd-0.8.tar.gz
Posted Dec 9, 1999
Authored by Everton da Silva Marques | Site nucleo.freeservers.com

Portfwd is a small C++ utility which forwards incoming TCP connections and/or UDP packets to remote hosts. Multiple forwarders can be specified in a flexible configuration file. There is support for FTP forwarding.

Changes: Documentation fixes.
tags | remote, udp, tcp
systems | unix
MD5 | fea0292c0e442116bc22e8358de7643f
portfwd-0.9.tar.gz
Posted Dec 9, 1999
Authored by Everton da Silva Marques | Site nucleo.freeservers.com

Portfwd is a small C++ utility which forwards incoming TCP connections and/or UDP packets to remote hosts. Multiple forwarders can be specified in a flexible configuration file. There is support for FTP forwarding.

Changes: A small compile fix.
tags | remote, udp, tcp
systems | unix
MD5 | a24e8a8582ce3b0928695b6ab02397b4
Page 1 of 1
Back1Next

File Archive:

May 2019

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    16 Files
  • 2
    May 2nd
    8 Files
  • 3
    May 3rd
    8 Files
  • 4
    May 4th
    2 Files
  • 5
    May 5th
    1 Files
  • 6
    May 6th
    15 Files
  • 7
    May 7th
    22 Files
  • 8
    May 8th
    16 Files
  • 9
    May 9th
    17 Files
  • 10
    May 10th
    16 Files
  • 11
    May 11th
    3 Files
  • 12
    May 12th
    4 Files
  • 13
    May 13th
    25 Files
  • 14
    May 14th
    24 Files
  • 15
    May 15th
    78 Files
  • 16
    May 16th
    16 Files
  • 17
    May 17th
    16 Files
  • 18
    May 18th
    2 Files
  • 19
    May 19th
    1 Files
  • 20
    May 20th
    11 Files
  • 21
    May 21st
    21 Files
  • 22
    May 22nd
    20 Files
  • 23
    May 23rd
    36 Files
  • 24
    May 24th
    0 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    0 Files
  • 28
    May 28th
    0 Files
  • 29
    May 29th
    0 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close