Microsoft Security Advisory MS01-056 - A buffer overflow in the handling of ASF files was discovered in Windows Media Player 6.4, allows remote attackers to execute of arbitrary code with the privileges of the user running a specially crafted ASF file. Anyone running versions 6.4, 7, or 7.1 is affected.
e6c8b663e12c7020989589d518ede4f01f13fbc872e51249b2a57769ebc3249aiSecureLabs Security Advisory - Cabezon Aurelien has discovered a vulnerability in the Network Tool 0.2 Addon for PHPNuke that allows remote users to run arbitrary commands with the privileges of the httpd daemon, thanks to the failure of the addon to filter shell meta-characters.
793e2c2c5f0e428af223241b631f0f5aa4c00fbb72c90e0e4b899fb9bbc0d1f1iSecureLabs Security Advisory - Cabezon Aurelien has discovered a reverse directory traversal vulnerability in the Gallery Addon for PHPNuke that allows users to view arbitrary files on the remote system that are owned or readable by the httpd daemon.
fb56723b90987185c743733ccbeb618508f8f8601f8af9aefd50e2cfd6a70c9dSGI Security Advisory 20011101-01-I - Multiple local Sendmail vulnerabilities have been discovered, potentially causing information loss, disclosure of possibly sensitive information, and possible mail system compromise. Affected versions include all Sendmail versions prior to 8.12.1 without the "RestrictQRun" option enabled.
0bb90dd02aa4d1ebe8eecbb55fa74f395f0e1610f305f926cc0eb9b53a9475d0Arirang is a powerful webserver security scanner with many features. Checks over 700 vulnerabilities.
f2a7a1591d5801786fd38bc50b816071eedf69d7db14a5039f15f0f3d05b65cbIP Sorcery is a TCPIP packet generator which allows you to send TCP, UDP, and ICMP packets with a GTK+ interface.
69c7166aa92aa5ff96825b882a68fbedb6d3678ed2cbd63d8072ec2a447669baIP Accounter is an IP accounting package for Linux. It collects, summarizes, and nicely displays IP accounting data. Its output can be a simple ASCII table, or graph images. Ipchains and iptables are supported. Logs are stored in files, gdbm, or even a PostgreSQL database.
cf6e02322b7f2b263433d8c97a4cc3e8456b6c406ac7f9fe38bed34bce71046dArping is an arp level ping utility which broadcasts a who-has ARP packet on the network and prints answers. Very useful when you are trying to pick an unused IP for a net that you don't yet have routing to.
73a7d6c576f813710a76ad482b8e167d00beaa3193612d4d1f1a3bec08dfec93Fwlogwatch analyzes the ipchains, netfilter, iptables packet filter, and Cisco logfiles and generates text and HTML summaries. Features realtime anomaly alerting capability, an interactive report generator, and the ability to cut off attacks by adding firewall rules.
b7cf234b303157f154dc27868cb784b0ccac2eb0799f29311afd4309c2c015d2IPA is highly configurable IP accounting software for Free and Open BSD. It allows to make IP accounting based on IP Firewall and/or IP Filter accounting rules. In most cases IP Accounting Daemon is run on public servers, software routers, etc. It uses powerful IP Firewall and/or IP Filter accounting rules and based on its configuration allows to escape from writing scripts to manage network accounting.
12056fffe29840e8ed48231a0859e2d669c6279581c0927ef6dc72e62b411320This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
6c7e4f4e2a6e481691ac98e8441896bc1fc269c94f6407da1cd4216ee8c223a7Lsof is an extremely powerful unix diagnostic tool. Its name stands for LiSt Open Files, and it does just that. It lists information about any files that are open by processes currently running on the system. It easily pinpoints which process is using each network connection / open port. FAQ available here.
1d84dc2e46d728cf93b300eaeb662aa2808635a33821cde826d23f41b1df0a60RATS, the Rough Auditing Tool for Security, is a security auditing utility for C, C++, Python, Perl and PHP code. RATS scans source code, finding potentially dangerous function calls.
1c722bc3352e6910f6d629977de86c3076289e6712405931ee27ca2cbde3e030Chrootuid makes it easy to run a network service at a low privilege level and with restricted file system access.
93dd1af0220bce0c0265c9f810a89f7fae56b34b7077397f8ea2dcb54ec169b3A remote buffer overflow vulnerability has been found in ActivePerl PerlIS.dll, affecting Microsoft IIS 4 and 5 servers with ActivePerl 5.6.1.629 and earlier versions installed.
8917c7da229f91182af1d08bb4683f41c970b4a0d38354d7ceb0e73d47c965ccKrush.c sends spoofed igmp packets with random codes/types set. Raises the CPU average on many machines, including routers.
75c5f18c8d42e4eed047ed84d197f2998d67eaf902fde1bdd550fa0d0e96299aXato Security Advisory XATO-112001-01 - Windows 2000 and XP terminal services are vulnerable to IP address spoofing. Affects all Service Pack levels.
7c1878d15177d043e8766c5cfa6ebe459a41447962a279da5c3d01064d67b90bCisco Security Advisory - A vulnerability causing performance degradation on Cisco 12000 series routers when receiving large numbers of ICMP Unreachable packets has been discovered.
fe7c00cd3df79c1ae19df496e96fe051f1aebb0999c1da2d79c74de18dd1c1fbCisco Security Advisory - Six vulnerabilities involving ACLs have been discovered in multiple releases of Cisco IOSR Software Release for Cisco 12000 Series Internet Routers.
94294beedb28664c3fa538762316825bac55a830b1d579d0c5291ff25c661d30Swatch, the Simple Watch Daemon is a program for UNIX system logging, originally written to actively monitor messages as they are written to a log file via the UNIX syslog utility. Swatch was designed to keep system administrators from being overwhelmed by large quantities of log data. It monitors log files and acts to filter out unwanted data and take one or more simple user specified actions based upon patterns in the log. Swatch can monitor information as it is being appended to the log file and alert system administrators immediately to serious system problems as they occur.
3f3225f58781b125ec0025ae69ddac82e9e8a2e0b1b3bb4b116021812053dfd7This is a Linux/portable port of OpenBSD's excellent OpenSSH. OpenSSH is based on the last free version of Tatu Ylonen's SSH with all patent-encumbered algorithms removed, all known security bugs fixed, new features reintroduced, and many other clean-ups.
4a0aee685874a64fcc96bd36f2ed4f341709d9191ef730e7b405de32e87241ebIncident.pl is a small script which, when given syslogs generated by snort or other tools, can generate an incident report for events that appear to be attempted security attacks, gather information on the remote host, and report the attack to the appropriate administrators.
46adf59384df5ca7c2c095ffeccfb3c7e7ad2d0beb49cb9f31f7dd68985ac1bdIP Sorcery is a TCPIP packet generator which allows you to send TCP, UDP, and ICMP packets with a GTK+ interface.
128427aa2c9f567d35671fdb436ca66aa14301c90b9cee6ca7ac222e41c6eb9dStunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, NNTP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code. Windows binaries available here.
46b40e6c5e18997904ac098eb57f3c539feb3c92fdf18c475e4524a3b97ceb8cFloppyfw is a router and firewall on one floppy disk. It uses Linux basic firewall capabilities, and has a simple packaging system. It is ideal for masquerading and securing networks on ADSL and cable lines, using static IP, DHCP, and PPPoE. Installation involves editing of only one file on the floppy.
656537f156e158ceb049740eee387415c59f412c978d35ae9e0a1a73a55aa6af
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed