Wingate.py is a dos exploit for Qbik wingate 3.0. Connects to tcp port 2080 and sends 2000 characters, causing all wingate services to crash. Origional bug found by eEye.
afd3c1b45990cec90d6d28919ea835f444a7fef236f733a9dc69806fde9832f3WinGate version 9.4.1.5998 suffers from an insecure permissions vulnerability that allows for privilege escalation.
2b5dfe00be1334114c04e743db783c3a3f1ad2d5004db2216f1ead8c50be8631This Metasploit module exploits a stack overflow in Qbik WinGate version 6.1.1.1077 and earlier. By sending malformed HTTP POST URL to the HTTP proxy service on port 80, a remote attacker could overflow a buffer and execute arbitrary code.
894f43ed9ebd305fbfb850e6148306dc62adfbc8788b34ecf2cdb98d799e4036Secunia Security Advisory - A security issue has been reported in WinGate, which can be exploited by malicious people to bypass certain security restrictions.
5ec87dd46e74b28597f18de805cfe4834378a5dee5248a19a2f1e618c4f43f08WinGate version 6.2.2 is vulnerable to denial of service attacks.
df14db0416db71005c7e0fc4feb2a651614e2452092b5abae78f2d3e43f1d7e2Secunia Security Advisory - A vulnerability has been reported in Qbik WinGate, which can be exploited by malicious people to cause a DoS (Denial of Service).
5f0bf2716281f6eaa450b1acf791d7e327618e0baf6cda9b7da2aff358a55e2aHarmony Security Advisory - Qbik's WinGate versions below 6.2.2 suffer from a remote denial of service vulnerability.
01bc3078c7944cbe079a4848b79ed8258c76fb99bef205db3e3b00b3fe9bca9eiDefense Security Advisory 11.26.06 - Remote exploitation of a denial of service vulnerability in Qbik IP Management Limited's WinGate allows attackers to cause the application to consume 100% of available CPU cycles. iDefense has confirmed that Qbik Wingate 6.1 is vulnerable. Earlier versions are suspected vulnerable.
340e57a628054d4da0081a87641a3c6df3eecd3869a418e65078ee848c040575Secunia Security Advisory - Secunia Research has discovered a vulnerability in WinGate, which can be exploited by malicious users to disclose potentially sensitive information and bypass certain security restrictions.
0dc39c8897bb34802f6c5425fc57e8f48278f1569dfe6930206ff358291ce169QBik Wingate version 6.1.1.1077 remote buffer overflow exploit for Windows 2000. Binds a shell to tcp/4444.
3634dcb8240074e73c3a15a78c45b2ad9a7989d1f46f1f58e343d37350b464c8Secunia Security Advisory - kcope has discovered a vulnerability in WinGate, which can be exploited by malicious people to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
da3b9e7c3c29b380fbe23d171ab110db71d132bf519fc4e668b1daa8415c8be2iDEFENSE Security Advisory 07.01.04: WinGate Information Disclosure Vulnerability - An input validation vulnerability in Qbik WinGate allows attackers to retrieve arbitrary system files.
417320e1f292817c15b6064e01b1e073aa5c59b5092bbb34c19aff8a1b0dd3b3The Legion 2000 Banner Scanner picks up banners for ssh, ftp, telnetd, wingates and more.
f0c4fce87e59a139f6bcd2167bd1fc39e797801ae92e98dd2d137fcfd3b60b80wgdecode extracts WinGate administrator passwords from Windows 9x/NT machine registries and decodes them.
908bb0f468a55441c09dc6cea4fc99ddcb9917e24f388a006adfafae37b75bcdOg-Brute is a perl package to brute force pop3 and ftp account passwords and probe smtp for valid logins with wingate support.
3d8556641b28804c415bb096bac918f0b0d135a0ed4a6efa0e2d0c555d36fdb7Wingate 4.01 remote denial of service attack - Opens multiple connections and sends large amounts of MSG_OOB data, causing an "Out of buffers" error.
437e66ed3617f491bb8ad2ae281318efafca91ddb9652a9eed2973fad75644dfwGateScan v4.0b is a wingate scanner which includes mIRC DDE support, a new design, SOCKS support, and much more.
b6c235c13f3f0bb3d7316deaa72016b412dcaa6399c951d81aeaf5c33378b0dcWingate 4.1 Beta A and below allows users with access to read the logs to read any file on the filesystem by encoding the URL with escape codes, bypassing input validation. Includes wgate41a.c, proof of concept code. Fix available here.
d911de7376362eaa57534d66e1363dca6a222e4eac2a3b3c940f8173fb80d190Weekly Newsletter from Help Net Security - Covers weekly roundups of security events that were in the news the past week. In this issue: Cached_feed.cgi vulnerability, Gnorpm /tmp vulnerability, Cyberoffice Shopping cart flaw, Wingate 4.0.1 dos, Xfce 3.5.1 local vulnerability, Thttpd 2.19 ssi vulnerability, Pegasus mail file reading vulnerability, GNU Groff problem, IIS 5.0 unauthorized directory listings, AOL Instant Messanger DOS, Another IE5.5/outlook vulnerability, Traceroute local root vulnerability, esound vulnerability, tmpwatch vulnerabilities, and the PHPix 1.0.X vulnerability. In news: Media's guide to talking to hackers, using conservation of flow as a security mechanism in network protocols, securing a default linux instalation, Bush Campeign mounts email assult, Softseek infects users with Netbus, OpenBSD plugs security hole, Secprog mail list, Cybercrime outpacing security spending, Interview with Mark Abene, Linux virus scanners, and more.
a9ecc6e80c436a8c0de9e4f5135fdbbc3cad8cba882b3cb3d51bdc1f725d75e6There is a vulnerability in the Wingate engine that allows a malicious user to disable all services to the engine by sending an abnormal string to the enabled Winsock Redirecter Service. Wingate Home/Standard/Pro version 4.0.1 is vulnerable. The problem has been addressed in Wingate 4.1 Beta A.
adfb54633be316c75b5176b75c94c600197e9e47ad32afe8556a55aab94d4477Advanced Socket Bouncer (ASB) is another kind of network tool. It supports IPv6 (detects automatically IPv6 hostnames/addresses), SQUID (connect method and SQUID with SSL support but no SSL proxy), SOCKS4, SOCKS5, and WINGATE.
6d8e284992b078fd77ad8910e57bfa57dc3b6d034d5c043f4f19e4b8a0ca1ec0wingate.pl is a remote dos exploit for Qbik Wingate 3.0.
daaa900a3a785b81dbfd48e547450217239ac07ddc77f76f757da46713d5e7d9Exploits ported to Windows with the Cygnus compiler. Includes fuck_them.exe, gdm-exploit.exe, inndx.exe, orgams.exe, portn.exe, rwhokill.exe, tentacle.exe, wingatecrash.exe, and winnuke.exe.
faac7f196fb783d71bf9db8df1fdd3a59d1b4de1279c15ed2ee2681c97906271incognitomail2.c sends fake mail using a wingate proxy to obscure the true origin of the message.
2db83f0aa98b6e3f8d8a8da4354b8fb4d3e12832b720864635806f9cb449ef61Wingatelnet automatically routes your connection through a list of wingate servers, dramatically increasing your anonimity.
6776e02e76e4ca81467bdd2461449ce984c32024fd287d63bd0b107f5f035ae8Trickscan is a portscanner and wingate scanner in one.
5b1ff66794d0a711ce45a7f69a3d09d3c5b832489f6950b07413e7725ef1e684
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed