Nmap NSE net: ipidseq

Classifies a host's IP ID sequence test for susceptibility to idle scan. Sends six probes to obtain IP IDs from the target and classifies them similarly to Nmap's method. This is useful for finding suitable zombies for Nmap's idle scan '-sI' as Nmap itself doesn't provide a way to scan for these...

Nmap NSE net: db2-das-info

Connects to the IBM DB2 Administration Server DAS on TCP or UDP port 523 and exports the server profile. No authentication is required for this request. The script will also set the port product and version if a version scan is requested. OpenVAS Vulnerability Test $Id: gbnmapdb2dasinfonet.nasl...

Nmap NSE net: snmp-netstat

Attempts to query SNMP for a netstat like output. SYNTAX: snmpcommunity: The community string to use. If not given, it is ''public'', or whatever is passed to 'buildPacket'. OpenVAS Vulnerability Test $Id: gbnmapsnmpnetstatnet.nasl 5499 2017-03-06 13:06:09Z teissa $ Autogenerated NSE wrapper...

Nmap NSE net: dns-cache-snoop

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Metasploit with MYSQL in BackTrack 4 r2-vulnerability warning-the black bar safety net

Until the release of BackTrack 4 r2, it was possible to get Metasploit working with MYSQL but it was not an altogether seamless experience. Now, however, Metasploit and MYSQL work together “out of the box” so we thought it would be great to highlight the integration. With the Metasploit team movi...

Multiple Vendor Malformed ZIP Archive Anti-virus Detection Bypass

Anti-virus products provide protection against dangerous content such as viruses, trojans, worms and other destructive programs. A non-privileged code execution vulnerability has been reported in the way multiple anti-virus products scan ZIP archive files. The vulnerability is due to ANSI escape...

Re: [DSECRG-11-018] Kaspersky administration Kit - Remote code execution via SMBRelay

It was closed only for relayng to the same host but it is imposible to close relayng on another host which run processes st the same account. And also smbrelay patch did not work on clusters http://dsecrg.blogspot.com/2011/01/passthehash-bible-1-attacking.html...

Re: [DSECRG-11-018] Kaspersky administration Kit - Remote code execution via SMBRelay

It was closed only for relayng to the same host but it is imposible to close relayng on another host which run processes st the same account. And also smbrelay patch did not work on clusters http://dsecrg.blogspot.com/2011/01/passthehash-bible-1-attacking.html...

[DSECRG-11-018] Kaspersky administration Kit - Remote code execution via SMBRelay

Digital Security Research Group DSecRG Advisory DSECRG-11-018 Application: Kaspersky Administration Kit Versions Affected: from 6.0 Vendor URL: http://www.kaspersky.com Bug: Design flaw Exploits: YES Reported: 22.01.2011 Vendor response: 22.01.2011 Solution: disable IP scan Date of Public Advisor...

CVE-2011-1531

The webscan component in the Embedded Web Server EWS on the HP Photosmart D110 and B110; Photosmart Plus B210; Photosmart Premium C310, Fax All-in-One, and C510; and ENVY 100 D410 printers allows remote attackers to read documents on the scan surface via unspecified vectors...

phpcms local contains a vulnerability caused by a write shell vulnerability, and delete arbitrary file vulnerability-vulnerability warning-the black bar safety net

by [email protected] phpcms2008 sp2 or sp4 even didn't look carefully These days a bug vulnerable., manufacturers ignored, is as install X, OK, the mood is unhappy. no matter so much. phpcms local contains to get the shell method, this article connected to a the phpcms the phpcmsauth result o...

targets-sniffer NSE Script

Sniffs the local network for a configurable amount of time 10 seconds by default and prints discovered addresses. If the newtargets script argument is set, discovered addresses are added to the scan queue. Requires root privileges. Either the targets-sniffer.iface script argument or -e Nmap optio...

Preemptive Protection against LizaMoon - Mass SQL Injection Attacks

LizaMoon is a mass SQL code injection attack, where a Web application vulnerability is exploited to inject malicious code into affected websites. If a Web surfer visits an infested site, he will be redirected to an alternate website that tries to install a rogue anti-malware software. This...

http-affiliate-id NSE Script

Grabs affiliate network IDs e.g. Google AdSense or Analytics, Amazon Associates, etc. from a web page. These can be used to identify pages with the same owner. If there is more than one target using an ID, the postrule of this script shows the ID along with a list of the targets using it. Support...

Cisco Secure Desktop CSDWebInstaller code exec

Added: 03/23/2011 CVE: CVE-2011-0926 BID: 46536 OSVDB: 63809 Background Cisco Secure Desktop is an endpoint security management product that consists of several components, such as Prelogin Assessment/Policies, Host Scan, Cache Cleaner, Secure Desktop Vault, etc. Problem Cisco Secure Desktop...

Windows Gather ARP Scanner

This Module will perform an ARP scan for a given IP range through a Meterpreter Session. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows Gather ARP Scanner', 'Description' = %q This...

Nessus 4.4.1 Latest Version Download !

Nessus 4.4.1 Latest Version Download ! New in this version: Scan Scheduling Nessus 4.4 lets you configure scans to run periodically on a daily/weekly/monthly basis. Configure your scans and let Nessus start them at the most appropriate time --- Enhanced Reporting Nessus 4.4 lets you compare...

DoS Condition with Altigen VoIP Phone Systems

If you run a NMAP network scan against the IP of the phone server, it will crash the Altigen's Gateway service, rendering the system useless until rebooted. All information saved in the phone system at the time is lost. Port 5061 crashes due to HEAP Overflow. Following message: Application popup:...

Brute Force Scanning of CIFS Ports

CIFS is an extension to the Message Block Server SMB protocol, a network protocol native to Windows systems which allows sharing of files and printers across a network. By trying to repeatedly authenticate to a SMB connected server using different passwords, it is possible to crack user accounts ...

MultiCMS - Local File Inclusion

Source: http://packetstormsecurity.org/files/view/97987/multicms-lfi.txt =============================wwwdotWhiteponnydotcom============================= Date: 29/01/2011 Author: R3VANBASTARD Exploit Title: MultiCMS File Inclusion Vulnerbility Vendor: http://www.multicms.net Status: FIXED Test...