PT-1999-1371 · Lynx · Lynx

Name of the Vulnerable Software and Affected Versions: Lynx WWW client affected versions not specified Description: The issue allows a remote attacker to specify command-line parameters that Lynx uses when calling external programs to handle certain protocols, such as telnet. Recommendations: At...

Telnet Service Detection

The Telnet service is running. This service is dangerous in the sense that it is not ciphered - that is, everyone can sniff the data that passes between the telnet client and the telnet server. This includes logins and passwords. C Tenable Network Security, Inc. include"compat.inc"; ifdescription...

CVE-1999-0740

Remote attackers can cause a denial of service on Linux in.telnetd telnet daemon through a malformed TERM environmental variable...

xylan.omniswitch.txt

Date: Wed, 31 Mar 1999 19:12:20 +0000 From: [email protected] To: [email protected] Subject: Xylan OmniSwitch "features" Sorry if this is already known. Stepped into two "features" of Xylan OmniSwitches also works on Pizza. These switches are sold OEM to Alcatel which just bought Xylan and IBM...

iis4.htr.pl

Re: Retina vs. IIS4, Round 2, KO Ryan R Permeh [email protected] Tue, 15 Jun 1999 17:01:23 -0500 tested, this works for me... scripting was turned on... perl exploit code follows: !/usr/bin/perl props to the absu crew use Net::Telnet; for $i=2500;$inew Host = "$ARGV0",Port = 80; my $cmd = "GE...

flowpoint2000.txt

Date: Tue, 11 Aug 1998 20:35:20 -0700 From: Jason Ackley Subject: DoS in Flowpoint 2000 DSL routers Hello, Quick Overview: There exists a DoS in Flowpoint's ADSL 2000 router 'fp2k' running software rev 1.2.3 anyone have other revs to test? Lil Backgrounder: Flowpoint builds the routers and...

tetrix.1.13.16.bof.txt

Date: Wed, 17 Feb 1999 13:03:45 -0800 From: Steven Hodges To: [email protected] Subject: Tetrix 1.13.16 is Vulnerable I have recently found a buffer overflow in a TetriNet daemon for Linux called "Tetrix". To exploit this bug, you will need a hostname longer than 122 characters, and any method...

iis4.htr-2.pl

Re: Retina vs. IIS4, Round 2, KO Randal L. Schwartz [email protected] Tue, 15 Jun 1999 16:59:08 -0700 "Ryan" == Ryan R Permeh writes: Ryan !/usr/bin/perl Ryan props to the absu crew Ryan use Net::Telnet; Ryan for $i=2500;$i Ryan $obj=Net::Telnet-new Host = "$ARGV0",Port = 80; Ryan my $cmd =...

flowpoint.adsl.router.txt

Date: Tue, 13 Apr 1999 23:01:50 -0700 From: David Brumley To: [email protected] Subject: aDSL routers Welp, aDSL is here. And at least one manufacturer, flowpoint, sets no admin password. It's in the documentation, so I assume the company already knows about this vulnerability: System managers...

X11R6.txt

Date: Sun, 21 Mar 1999 21:34:48 -0800 From: in.telnetd To: [email protected] Subject: X11R6 NetBSD Security Problem Hey If this has already been brought up, you have the right to stone me to death, But I havent seen it and ive searched, so here it is: I was fooling around today, and decided to...

CVE-1999-0749

Buffer overflow in Microsoft Telnet client in Windows 95 and Windows 98 via a malformed Telnet argument...

Microsoft Windows 9598 Internet Explorer 5Telnet - Local Heap Overflow

Microsoft Windows 9598 Internet Explorer 5Telnet - Local Heap Overflow // source: https://www.securityfocus.com/bid/586/info Windows 95 and 98 systems running IE4 or specific versions of IE5 5.00.2314.1003 and 5.00.2314.1003IC are susceptible to a remote vulnerability that allows the execution of...

CVE-1999-0889

Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set...

Solaris ^D Character Remote Telnet Service DoS

It was possible to make the remote Sun crash by flooding it with ^D characters instead of entering our login. This flaw allows an attacker to prevent your network from working properly. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. "SunKill" include'deprecatednasllevel.inc';...

WinGate Telnet Proxy localhost Connection Saturation DoS

The remote Wingate service can be forced to connect to itself continually until it runs out of buffers. When this happens, the telnet proxy service will be disabled. An attacker may block your telnet proxy this way, thus preventing your system from working properly if you need telnet. An attacker...

WinGate Passwordless Default Installation

Wingate is a program that allows a Windows98 computer to act as a proxy. Unfortunately, the default configuration is too permissive and allows anyone to use this computer to connect anywhere, thus hiding the real IP address. This WinGate server does not ask for any passwords, and thus can be used...

Netscape FastTrack Server 3.0.1 - Fasttrack Root Directory Listing

Netscape FastTrack Server 3.0.1 - Fasttrack Root Directory Listing source: https://www.securityfocus.com/bid/481/info Netscape's Fasttrack server is supposed to display a directory listing if the follwing three conditions are met: 1: Directory listing is enabled 2: No filename is specified in the...

Netscape FastTrack Server 3.0.1 - Fasttrack Root Directory Listing

source: https://www.securityfocus.com/bid/481/info Netscape's Fasttrack server is supposed to display a directory listing if the follwing three conditions are met: 1: Directory listing is enabled 2: No filename is specified in the requested URL 3: There is no index file in that directory defaults...

CVE-1999-0416

Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port...

Cisco 7xx Series Router - Denial of Service

// source: https://www.securityfocus.com/bid/1211/info Opening approximately 98 connections on port 23 will cause Cisco 760 Series Routers to self reboot. Continuously repeating this action will result in a denial of service attack. / Cisco 760 Series Connection Overflow Written by: Tiz.Telesup...