USSR Advisory #42 - HP Web JetAdmin remote denial of service attack. HP Web JetAdmin Version 6.0 for Windows NT / 2000 has a heap overflow. Sending a malformed URL the JetAdmin service which runs on port 8000 will cause it to stop responding.
b4251729211b04a255d527fe18341e1736747e209fc075c277e456f5b72bec0cUSSR Advisory #41 - HP Web JetAdmin web interface server directory traversal vulnerability. HP Web JetAdmin Version 5.6 for Windows NT and 2000 (tcp port 8000) allows an attacker to read any file outside of the intended web-published filesystem directory. Exploit URL included.
34a2c44b058e084b3e456e3f6fa27bcde80cc025fec19e5da65ab6189b9027a1Ping Analysis Tool II (PAT) performs icmp echo scans on a range of ip addresses as fast as physically possible. Features a dual-threaded scanning process and allows you to scan from a list of IP's.
8439bbaf530edef8540c0a91d5e8db14e343611eef1a9c0d9de2ea4f516e736eSAINT is the Security Administrator's Integrated Network Tool. It gathers as much information about remote hosts and networks as possible by examining all network services and potential security flaws. The collected data can then be analyzed using a simple rules-based system (or via other included interfaces). In Exploratory Mode, SAINT will examine the avenues of trust and dependency and iterate further data collection runs over secondary hosts.
a11fb20b7483f408d30ebabbfbf9d4fa739174d8f83dcd85e0c9d975b5737093There is a remote denial of service exploit against tcpdump. Tcpdump interprets UDP packets on port 53 as DNS traffic, however, domain names in DNS packets use a compression scheme that jumps to a particular offset in the packet to avoid multiple occurances. Sending a packet that has the offset set to a particular location and if a program trying to decompress the domain name does not have a strategy for avoiding infinite loops, tcpdump may fall into an infinite loop.
3cb11869215cdb4a624ad46e732b853b543df65c25669d3daa61fa3108233ad0Simpsons CGI Scanner v1.1 - Windows based CGI / web server vulnerability scanner with a simpsons theme. Tested on Windows 95/98/2000/NT. Allows use of your own CGI database.
eccab2ea264b74d35a86a8974f46766f2f878add00bf8ca13d7e4f6fff37b1bbBufferOverflow Security Advisory #5 - Remote shell via Qpopper2.53. qpop_euidl.c exploit included. Requires a qpop account and gives UID mail.
3b9258be6be245c764411f6a0fb9887e6d3353efa7d0f966e6a4b94561a41ad0Cisco IOS Router DOS attack via a specially formatted web get request.
46a1c083fa6d3a214e4d19120ba7ff3d0e614a13e73bbee75c39e927cf55ca4eCisco Auditing Tool - Perl script which scans cisco routers for common vulnerabilities. Checks for default passwords, easily guessable community names, and the IOS history bug. Includes support for plugins and scanning multiple hosts.
83f0404b49b0651b5b06b1a0938a579429b8de76f749a2b92532493f0ecbdcfc
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed