Advisory for Electrocomm 2.0

Advisory for Electrocomm Electrocomm is made by Electrosoft Site: http://www.esei.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0118 /-|=explanation=|- ElectroComm allows you to connect to a comm port on a computer over a network using any Telnet client. The progra...

Advisory for Netcruiser

Advisory for NetCruiser 0.1.2.8 Netcruiser is made by Netcuiser Software Site: http://www.netcruiser-software.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0110 /-|=explanation=|- Netcruiser is a webserver. It has a simple path revealance bug. /-|=who is...

Advisory for perl webserver

Advisory for Perl Web Server Site: http://perlwebserver.sourceforge.net by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0113 /-|=explanation=|- Perl Web Server has a simple dot dot bug bug. /-|=who is vulnerable=|- Tested to be vulnerable to the hex-encoded dot dot bug...

Advisory for Xitami 2.4d7, 2.5d4

Advisory for Xitami 2.4d7, 2.5d4 Xitami is made by Imatix. Site: http://xitami.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0105 /-|=explanation=|- Xitami is a webserver. It has a denial of service. /-|=who is vulnerable=|- Anyone running Xitami 2.5d4, 2.4d7 and...

Advisory for GoAhead Webserver v2.1

Advisory for GoAhead Webserver v2.1 GoAhead Webserver is made by GoAhead. Site: http://www.goahead.com by nemesystm of the DHC http://dhcorp.cjb.net - [email protected] ADV-0104 /-|=explanation=|- GoAhead is well, a webserver. It has a denial of service. /-|=who is vulnerable=|- Anyone runnin...

Savant 3.0 Denial Of Service

Not exactly sure what the problem is because it will handle the same request from a program that does the same thing. "Time is a factor" so pay attention man ;P Connect to the server using telnet or somthing and type in the following: GET / HTTP/1.1 Host:AAAAAAAAAAAAAAAAAAAA..... Where A x 260, h...

Cisco PIX Security Notes

Cisco PIX Notes -- Introduction This is a simples paper on which i wrote down some note about "Cisco PIX Firewall" so it isn't well organized or talk specifically about a vulnerability . All test it's about THE latest pix release on this pix: Cisco Secure PIX Firewall Version 5.31 Hardware: SE442...

Tru64 5 - su Env Local Stack Overflow

Tru64 5 - su Env Local Stack Overflow / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / / The copyright notice above does not evidence any / / actual or intended publication of such source code. / / / / Title: Tru64 5 su / / Tested under: Tru6...

Oracle WebDb engine brain-damagse

Ladies and gentlemen, here's something tasty: // Standard disclaimer applies. This post expresses my personal beliefs // and convinctions only. I am speaking as a private person. All the // statements were been provided for informative purposes only, and have // to be verified by the reader. NONE...

Re: Naptha - New DoS

I personally find it a bit questionable to release such an advisory and give only so little technical information about the vulnerability, how is anyone supposed to understand and protect about it then? Sounds to me like "we found the ultimate IP stack bug, be afraid, be very afraid, but no, we'r...

Serv-U FTP directory traversal vunerability (all versions)

===================================================================== Securax-SA-09 Security Advisory belgian.networking.security Dutch ===================================================================== Topic: Catsoft serv-U FTP Directory Transversal Vulnerability Announced: 2000-12-03 Updated...

Securax-SA-09.serv-u

===================================================================== Securax-SA-09 Security Advisory belgian.networking.security Dutch ===================================================================== Topic: Catsoft serv-U FTP Directory Transversal Vulnerability Announced: 2000-12-03 Updated...

All, After reading a report on security focus that deals with the sonicwall soho versions 4.0 and 5.0 being vulnerable to a buffer overflow by using a alot of characters in the username...I started testing againg our Sonicwall Pro and Pro VX in the lab. Entering this for the username -...

MS Windows (Jolt2.c) Denial of Service Exploit

Exploit for unknown platform in category dos / poc ============================================== MS Windows Jolt2.c Denial of Service Exploit ============================================== / File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windo...

Microsoft Windows - 'Jolt2.c' Denial of Service (MS00-029)

/ File: jolt2.c Author: Phonix Date: 23-May-00 Description: This is the proof-of-concept code for the Windows denial-of-serice attack described by the Razor team NTBugtraq, 19-May-00 MS00-029. This code causes cpu utilization to go to 100%. Tested against: Firewall-1 Written for: My Linux box...

HP-UX 11.0 pppd Stack Buffer Overflow Exploit

Exploit for hp-ux platform in category local exploits ============================================= HP-UX 11.0 pppd Stack Buffer Overflow Exploit ============================================= / Copyright c 2000 ADM / / All Rights Reserved / / THIS IS UNPUBLISHED PROPRIETARY SOURCE CODE OF ADM / /...

beos vulnerabilities

This advisory was actually written by me back in febuary this year, only to be misplaced and forgotten about until now. Some of the applications listed, most noteably baxter and the other irc clients, were patched earlier this year as a result of me informing the relevant developers. These...

Possible vulnerability in HPUX

Hello, Few days ago i read the mail Hackerslab bugpaper HP-UX bdf -t option buffer overflow vul. And decided to see any other possible vulnerabilityies on my ststem. HP-UX 10.20. After a few minutes maybe a little more : ,trying each setuid exe with different options, i finally got results as for...

re, suidperl; more

hi, yes, i hoped to announce this bug to the perl-developers before it came public; but i think they read BQ ... Michal ... : So far, there are more security-releated apps which use /bin/mail for logging Once I was also fallen into thinking that it can be secure, until Dave Dittrich pointed that ...

isc-dhcpd.exploit.txt

Somebody at OpenBSD discovered a possible root exploit in the ISC DHCP client. I can confirm that as of 6:23am on June 23rd after several hours of hacking around the sources I had the following dhcpd config running on my own machine's private network for testing: shared-network LOCAL-NET option...