How AustNet's Virtual World was hacked to reveal users real IP. Slightly crippled demonstration code included. Lots of information on the austnet hack available here.
5a260b843fcd9e1fd0707a0d24a5d72030775f0f92e845feabd7e5f747913330Smart FTP v0.2 Beta denial of service.
7e53b450c8cd258654a90a3b865dcd89ba6cc7dc9badc0a0181198ea984c848fNmap v2.50 is a utility for network exploration or security auditing. It supports ping scanning (determine which hosts are up), many port scanning techniques (determine what services the hosts are offering), and TCP/IP fingerprinting (remote host operating system identification). Nmap also offers flexible target and port specification, decoy scanning, determination of TCP sequence predictability characteristics, sunRPC scanning, reverse-identd scanning, and more.
1cc585b6c64baf76dfec265ad0ac6d5c2af544ee8cf72e35a0866a281ad7d89fNo information is available for this file.
d4236c24f82faf078ea29ac0df486fa639385efad4536c2cc18103b96f308d07TFAK v3.0 is a client for 22 remote access trojans, and removes 257 remote access trojans and 9 file joiners. This is the first and only trojan scanner which is able to find new, unknown trojans. Archive password is set to p4ssw0rd. Use at your own risk.
f3058f0579478fa44a96a6e24d2c80f0d1463d4140f109d0489e35e2fbe2ace1fgets() is unsafely used in qpopper version 2.53.
77180eb67bc49fa8972f894996d0a0752c4976f7670f14e763a26beb0508488fMeeting Maker is a networked calendaring/scheduling software package that's estimated to be installed on over 700,000 desktops. Clients send passwords to a Meeting Maker server encoded using a polyalphabetic substitution cipher. Included perl script will decode passwords sent over the net.
67154248285eff4f8f035d665daa2b567210290fe6363e5a280227c4204c28b5/usr/bin/lpset vulnerability in Solaris/SPARC 2.7.
738aaad04aff586acc9e1ba9f31af8433e25ab9c588436f502730bdb49b2452aredhat 6.1 /usr/bin/man exploit.
a500d368a3d864005964651a7bdc495be0ca96fa5760a567eb02ee98dd14c8e6Red Hat Security Advisory RHSA-2000:014-16 - The GUI portion of Piranha may allow any remote attacker to execute commands on the server. This may allow a remote attacker to launch additional exploits against a web site from inside the web server. This is an updated release that disables Piranha's web GUI interface unless the site administrator enables it explicitly.
6e954b74b20856e17bdb52124b057e22a026b2412ed11a71453262d37275be7cSolaris 2.7 /usr/bin/lp local exploit, i386.
9bc5fca1cc87abb07be6db3401607d3a358e4c4094233f749f43579bcc03bce7xsun2.c is a Solaris 7 x86 local root stack overflow for /usr/openwin/bin/Xsun.
24ed4a994f23f97bc9fed03f609685836e2cbacf45625145eee480f32fadd9b6/usr/bin/lpset local root exploit for sparc.
d78747e93cc1e62a2498b1d8476bbc5f83b029adb59fc71da4f8e40156e912bbimwheel local root exploit (as discussed in RHSA-2000:016-02).
c9ef8294aec65f46d63ce7f67c062e2ee9fa22a942d8fbaa5505c062851c439dCerberus Information Security Advisory CISADV000427 - Cart32 secret password Backdoor. he Cerberus Security Team has discovered a serious security hole in Cart32 (http://www.cart32.com/) that can only be described as a blatant backdoor. Within cart32.exe, the main file that provides the cart's functionality, there is a secret hidden password that can be used to gain vital information such as other passwords and using these an attacker can modify the shopping cart's properties so that arbitary commands may be run on the server as well as gain access to customers' credit card details, shipping addresses and other highly sensitive information.
98e03c0e0706b6a43501efe12529016b65d8e31ed23baff38c1bc950534d95afPassive Fingerprinting is a method to learn more about the enemy, without them knowing it. Specifically, you can determine the operating system and other characteristics of the remote host using nothing more then sniffer traces. Though not 100% accurate, you can get surprisingly good results by looking at the TTL, TOS, Window Size, and DF bit. Includes information on changing your machines fingerprint on Linux and Solaris.
3de3522a3961606ab4ff30b515bb3831552e13e90fd72c8718c7d15a4adf6301Timbuktu Pro 2.0b650 denial of service exploit.
57c923b60dc99c9f00bd5df5a3490c3875a21a218befdfb11e7d5e49b5bd8ac6Windows Security Update April 19 - In this issue: FrontPage 2000 Exposes Win2K Accounts, Buffer Overflow in Cmd.exe, Active Directory Mixed Object Access, Cisco IOS Subject to Denial of Service, Real Server Denial of Service, Netscape Communicator Exposes Local Files, Buffer Overflow and Path Exposure in HTimage, Internet Explorer 5.01 Allows Cross-Frame Navigation, Netware 5.1 Remote Administration Overflow, and Panda Security 3.0 Can Be Bypassed.
921aa9537a60c1ccb06c67629be4e513cc11a200a55ebfebf6465df15fef6632Vulnerability found in cgi DNEWSWEB used for reading news groups from web. Its possible to overflow stack and read any file from remote host with web server rights. All versions and for all OSes exploitable. Example of reading file /etc/passwd for Linux included. Fixed in dnews 5.4c1, available here.
80c493b4fa962aa14ae596c3448a43d15955031505446513fe804663d836d3deKSnuffle is a network packet sniffer for KDE. It supports multiple concurrent sniffers, packet filtering (aka tcpdump), event triggers and commands, text and binary logging (and replay), remote sniffing (via a demon process), and dynamically loadable plugins. Network traffic is displayed graphically and in detail; supplied plugins summarise traffic by direction (incoming, outgoing), source, and destination.
600c5501d6a4ede4f260d596ad4ae215835355ee635f2c1f98446f6b51f87f8dCERT Advisory CA-2000-03 - Continuing Compromises of DNS servers. Many systems are vulnerable to remote root bind bugs which are increasingly being exploited. A significant number of delegates DNS servers in the in-addr.arpa tree are running outdated version of DNS software as well. CERT
7b97c73fe63e3a90247e1211b76b0ec3924d359ff2819400d1d10d4c987690cdThe Linux Intrusion Detection System is a patch which enhances the kernel's security. When it's in effect, many system administration operations can be made impossible even for root. You can turn the security protection on or off online and you can hide sensitive processes and prevent anyone from using ptrace or any other capability on your system. LIDS can also provide raw device and I/O access protection.
a38234b0d2c4e880c840258cb326cbd8662e5de7675c99bef86ba7bd995e4db3SAINT is the Security Administrator's Integrated Network Tool. It gathers as much information about remote hosts and networks as possible by examining all network services and potential security flaws. The collected data can then be analyzed using a simple rules-based system (or via other included interfaces). In Exploratory Mode, SAINT will examine the avenues of trust and dependency and iterate further data collection runs over secondary hosts.
38521416792f575bafdfe43774831ce1de923f0bf7c637433a82e0c2069a9b85Internet Security Systems (ISS) X-Force has discovered a vulnerability in the AIX frcactrl program. The Fast Response Cache Accelerator (FRCA) is a kernel module that can be used with the IBM HTTP server to improve the performance of a web server. If the FRCA module is loaded, a local attacker could use frcactrl, a program used to manage FRCA configuration, to modify files.
4c52418fd006161d9742422a2bf61974cc7390397b5bdafb2ad32a6aba05f961IP Filter is a TCP/IP packet filter suitable for use in a firewall environment. To use, it can either be run as a loadable kernel module (recommended) or incorporated into your UNIX kernel. Scripts are provided to install and patch system files as required.
441a6f73c241eb24222aa49e707efe700b07b96d28b867319c5bf5a79b506cbb
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed