Lucene search
K

114 matches found

exploitpack
exploitpack
added 2015/07/10 12:0 a.m.28 views

NTPD - MON_GETLIST Query Amplification Denial of Service

NTPD - MONGETLIST Query Amplification Denial of Service !/usr/bin/perl ntp MONGETLIST query amplification ddos Copyright 2015 c Todor Donev [email protected] http://www.ethical-hacker.org/ https://www.facebook.com/ethicalhackerorg A Network Time Protocol NTP Amplification attack is an emergin...

Exploits0
OSV
OSV
added 2014/02/11 10:13 p.m.9 views

MGASA-2014-0052 Updated chrony package fixes security vulnerability

Updated chrony package fixes security vulnerability: In the chrony control protocol some replies are significantly larger than their requests, which allows an attacker to use it in an amplification attack CVE-2014-0021. Note: in the default configuration, cmdallow is restricted to localhost, so...

7.5CVSS7.5AI score0.03801EPSS
Exploits0References3
Mageia
Mageia
added 2014/02/11 10:13 p.m.38 views

Updated chrony package fixes security vulnerability

Updated chrony package fixes security vulnerability: In the chrony control protocol some replies are significantly larger than their requests, which allows an attacker to use it in an amplification attack CVE-2014-0021. Note: in the default configuration, cmdallow is restricted to localhost, so...

7.5CVSS7.6AI score0.03801EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2014/02/11 9:27 p.m.19 views

Largest Ever 400Gbps DDoS attack hits Europe uses NTP Amplification

The Distributed Denial of Service DDoS attack is the one of favourite weapon for the hackers to temporarily suspend services of a host connected to the Internet and till now nearly every big site had been a victim of this attack. Since 2013, Hackers have adopted new tactics to boost Distributed...

6.7AI score
Exploits0
Metasploit
Metasploit
added 2014/01/29 7:21 a.m.143 views

DNS Amplification Scanner

This module can be used to discover DNS servers which expose recursive name lookups which can be used in an amplification attack against a third party. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...

7.8CVSS6.9AI score0.5726EPSS
Exploits2
FreeBSD Advisory
FreeBSD Advisory
added 2014/01/14 12:0 a.m.18 views

FreeBSD-SA-14:02.ntpd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:02.ntpd Security Advisory The FreeBSD Project Topic: ntpd distributed reflection Denial of Service vulnerability Category: contrib Module: ntpd Announced:...

5CVSS7AI score0.97549EPSS
Exploits23
FreeBSD
FreeBSD
added 2014/01/01 12:0 a.m.81 views

ntpd DRDoS / Amplification Attack using ntpdc monlist command

ntp.org reports: Unrestricted access to the monlist feature in ntprequest.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service traffic amplification via forged 1 REQMONGETLIST or 2 REQMONGETLIST1 requests, as exploited in the wild in December 2013 Use noquery to...

5CVSS6.4AI score0.97549EPSS
Exploits23References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/09/19 12:0 a.m.17 views

JVN#62507275: Multiple broadband routers may behave as open resolvers

A device that runs as a DNS cache server, which responds to any recursive DNS queries that are received is referred to as an open resolver. Multiple broadband routers may contain an issue where they may behave as open resolvers. Impact The device may be used in a DNS amplification attack and...

6.6AI score
Exploits0
The Hacker News
The Hacker News
added 2013/05/31 7:4 a.m.14 views

Massive 167Gbps DDoS attacks against Banking and Financial Institutions

DDoS attackers attempted to bring down an Banking services earlier this week using one of the largest Distributed denial of service attack using DNS reflection technique. Prolexic, the global leader in Distributed Denial of Service DDoS protection services, announced that it has successfully...

6.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/05/06 12:0 a.m.42 views

Asterisk IAX2 Multiple Method Handshake Spoofing DoS

The version of Asterisk running on the remote host does not properly validate an IAX2 handshake. By spoofing NEW and ACK messages, an unauthenticated, remote attacker may be able to leverage this issue to flood a third-party host with packets from the affected host containing audio data. C Tenabl...

7.1CVSS5.5AI score0.02743EPSS
Exploits1References5
OSV
OSV
added 2006/03/03 11:2 a.m.2 views

DEBIAN-CVE-2006-0987

The default configuration of ISC BIND before 9.4.1-P1, when configured as a caching name server, allows recursive queries and provides additional delegation information to arbitrary IP addresses, which allows remote attackers to cause a denial of service traffic amplification via DNS queries with...

5CVSS6.9AI score0.5726EPSS
Exploits2References1
0day.today
0day.today
added 2002/09/17 12:0 a.m.32 views

TCP SYN Denial of Service Exploit (bang.c)

Exploit for bsd platform in category dos / poc ========================================== TCP SYN Denial of Service Exploit bang.c ========================================== / BANG.C Coded by Sorcerer of DALnet FUCKZ to: etech, blazin, udp, hybrid and kdl PROPZ : skrilla, thanks for all your help...

7AI score
Exploits0
seebug.org
seebug.org
added 2002/09/17 12:0 a.m.29 views

TCP SYN Denial of Service Exploit (bang.c)

No description provided by source. / BANG.C Coded by Sorcerer of DALnet FUCKZ to: etech, blazin, udp, hybrid and kdl PROPZ : skrilla, thanks for all your help with JUNO-Z and especially this code : -------------------------------- REDIRECTION DOS FINALLY DISTRIBUTED !!!!!! This is POC and...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2001/09/12 4:0 a.m.26 views

CVE-1999-1066

Quake 1 server responds to an initial UDP game connection request with a large amount of traffic, which allows remote attackers to use the server as an amplifier in a "Smurf" style attack on another host, by spoofing the connection request...

6.6AI score0.01272EPSS
Exploits0References1
Rows per page
Query Builder