CVE-1999-0629

The ident/identd service is running...

thelounge may publicly disclose of all usernames/idents via port 113

Per RFC 1413, The unique identifying tuple includes not only the ports, but also the both addresses. Without the addresses, the information becomes both non-unique and public: - If multiple connections happen to use the same local port number which is possible if the addresses differ, the usernam...

PT-2024-40282 · Cidentd · Identd

Name of the Vulnerable Software and Affected Versions: identd affected versions not specified Description: The issue arises from the ident protocol as defined in RFC 1413, where the unique identifying tuple includes not only the ports but also both addresses. Without considering the addresses, th...

openSUSE Security Update : apparmor (openSUSE-2016-491)

This update for apparmor updates some profiles. It is specifically required for the Samba security update. profile updates : - sbin.syslog-ng - usr.sbin.identd - usr.sbin.nscd allows nscd paranoia mode - usr.sbin.smbd - usr.sbin.smbldap-useradd - apache2.d/phpsysinfo updated abstractions : - aspe...

Xinetd 2.1.8 - Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2840/info The possibility for a buffer overflow condition exists in the xinetd daemon. Xinetd provides the ability to log via identd the user-identities of clients connecting to specific services if the clients host...

Fake Identd 0.9/1.x Client Query Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5351/info Fake Identd is an open source Ident server designed to return the same information to all incoming requests. It is implemented by Tomi Ollila, and available for Linux and a number of other Unix based operating...

Trillian 0.6351/0.7x Identd Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5733/info Trillian ships with an ident server to facilitate connections to IRC servers that require an ident response before allowing access. A buffer overflow condition exists in the Trillian ident server, which may...

S.u.S.E. Linux <= 6.2,Slackware Linux 3.2/3.6 identd Denial of Service

No description provided by source. source: http://www.securityfocus.com/bid/587/info In the inetd.conf under certain distributions of SuSE Linux the in.identd daemon is started with the -w -t120 option. This means that one identd process waits 120 seconds after answering the first request to answ...

Nmap NSE 6.01: auth-spoof

Checks for an identd auth server which is spoofing its replies. Tests whether an identd auth server responds with an answer before we even send the query. This sort of identd spoofing can be a sign of malware infection, though it can also be used for legitimate privacy reasons. OpenVAS...

Nmap NSE 6.01: auth-owners

Attempts to find the owner of an open TCP port by querying an auth daemon which must also be open on the target system. The auth service, also known as identd, normally runs on port 113. OpenVAS Vulnerability Test $Id: gbnmap6authowners.nasl 7148 2017-09-15 13:01:14Z cfischer $ Autogenerated NSE...

Fake Identd Client Query Remote Buffer Overflow Vulnerability

Fake Identd server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Nmap NSE net: auth-owners

Attempts to find the owner of an open TCP port by querying an auth daemon which must also be open on the target system. The auth service, also known as identd, normally runs on port 113. OpenVAS Vulnerability Test $Id: gbnmapauthownersnet.nasl 5505 2017-03-07 10:00:18Z teissa $ Autogenerated NSE...

Nmap NSE net: auth-spoof

Checks for an identd auth server which is spoofing its replies. Tests whether an identd auth server responds with an answer before we even send the query. This sort of identd spoofing can be a sign of malware infection, though it can also be used for legitimate privacy reasons. OpenVAS...

Nmap NSE: Auth Spoof

This script attempts to checks for an identd auth server which is spoofing its replies. This is a wrapper on the Nmap Security Scanner's http://nmap.org auth-spoof.nse. OpenVAS Vulnerability Test $Id: gbnmapauthspoof.nasl 7000 2017-08-24 11:51:46Z teissa $ Wrapper for Nmap Auth Spoof NSE script...

auth-owners NSE Script

Attempts to find the owner of an open TCP port by querying an auth daemon which must also be open on the target system. The auth service, also known as identd, normally runs on port 113. Example Usage nmap -sV -sC Script Output 21/tcp open ftp ProFTPD 1.3.1 | auth-owners: nobody 22/tcp open ssh...

auth-spoof NSE Script

Checks for an identd auth server which is spoofing its replies. Tests whether an identd auth server responds with an answer before we even send the query. This sort of identd spoofing can be a sign of malware infection, though it can also be used for legitimate privacy reasons. Example Usage nmap...

Detect slident and/or fake identd

The remote ident server returns random token instead of leaking real user IDs. This is a good thing. SPDX-FileCopyrightText: 2005 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Detect slident and or fake identd

The remote ident server returns random token instead of leaking real user IDs. This is a good thing. OpenVAS Vulnerability Test $Id: slident.nasl 7052 2017-09-04 11:50:51Z teissa $ Detect slident and or fake identd Authors: Michel Arboi Copyright: Copyright C 2005 Michel Arboi This program is fre...

CVE-2002-1792

Buffer overflow in Fake Identd 0.9 through 1.4 allows remote attackers to execute arbitrary code as root via a long request that is split into multiple packets...

CVE-2002-1792

CVE-2002-1792 concerns the Fake Identd server, with versions 0.9–1.4 vulnerable to a remote buffer overflow. A long request split across multiple packets can allow an attacker to execute arbitrary code with root privileges. Multiple connected sources (NVD, CVE lists, OpenVAS/Nessus entries) descr...