Section: .. / advisories / b0f /
| /// File Name: |
sms.c |
Description:
|
sms.c is a remote SMS 1.8.2 (mail2sms gateway) long subject line remote buffer overflow exploit. Send the mail generated by this program and a shell will be listening on port 2222. Offsets adjusted for redhat.
| | Author: | Venglin | | Homepage: | http://b0f.freebsd.lublin.pl | | File Size: | 2324 | | Last Modified: | Jun 1 00:35:49 2000 |
| MD5 Checksum: | 836481971d25cd24f48a3187fca55303 |
|
| /// File Name: |
spider.tgz |
Description:
|
fs-spider is a multi-threaded bad permissions finder (user defined). It
| | Author: | lamagra | | Homepage: | http://lamagra.seKure.de | | File Size: | 4146 | | Last Modified: | May 5 22:04:01 2000 |
| MD5 Checksum: | 48bb15ad312e8be76f26b4bcc38bb6be |
|
| /// File Name: |
sqlsyslogd.c |
Description:
|
syslogd-to-MySQL wrapper v0.1 prebeta. Stores syslog messages in a MySQL database. Written for FreeBSD.
| | Author: | Venglin | | Homepage: | http://www.freebsd.lublin.pl | | File Size: | 3452 | | Last Modified: | Apr 26 02:55:38 2000 |
| MD5 Checksum: | 9a055ca5347884d3708e659ce3ae8a55 |
|
| /// File Name: |
sscan2k-pre2.b0f.tar.gz |
Description:
|
sscan was given to buffer0verfl0w security by jsbach for the project to be continued for jsbach. From now on sscan will go as sscan2k. sscan2k now has updated vulnerability checks along with all the other great features it had before, improved OS detection (user can update the fingerprints by editing Osdefs.ms [which comes in sscan2k scripting language]), etc.
| | Author: | eth0, axess. Fixes: Mixter. | | Homepage: | http://www.b0f.com | | File Size: | 338859 | | Last Modified: | May 23 00:16:13 2000 |
| MD5 Checksum: | 3ee58f3c6e90d5e587cc8b068b22548d |
|
| /// File Name: |
sscan2k-pre3.b0f.tar.gz |
Description:
|
sscan2k is a remote auditing/vulnerability scanner which determines remote OS, and scans the host for applicable vulnerabilities. Features updated vulnerability checks, a scripting language, support for plugins and addons, configureable OS fingerprints, dns zone and subnet scans. Based off sscan by jsbach.
| | Author: | eth0 | | Homepage: | http://b0f.freebsd.lublin.pl | | Changes: | Fixes by mixter. | | File Size: | 336314 | | Last Modified: | Jun 8 22:22:42 2000 |
| MD5 Checksum: | f2afd7708edbbf1d301f9597e8fe4b30 |
|
| /// File Name: |
sscan2k-pre4.HWA.tar.gz |
Description:
|
sscan was given to buffer0verfl0w security by jsbach for the project to be continued for jsbach. From now on sscan will go as sscan2k. sscan2k now has updated vulnerability checks and the code has also been cleaned up. This scanner is now a release of HWA.
| | Author: | eth0 | | Homepage: | http://hwa-security.net | | File Size: | 336183 | | Last Modified: | Aug 31 02:01:45 2000 |
| MD5 Checksum: | fa578e3f4a7d3b3965d3efbc2a1694dd |
|
| /// File Name: |
standalone.sh |
Description:
|
A sample ipchains firewall script, featuring many options you can uncomment.
| | Author: | eth0 | | Homepage: | http://www.b0f.com | | File Size: | 9223 | | Last Modified: | Feb 29 04:25:22 2000 |
| MD5 Checksum: | ad8cd3cb215727d8aee7557438a2bc20 |
|
| /// File Name: |
stringwiper.sh |
Description:
|
Stringwiper is a shell script that wipes a certain string from all files in /var/log.
| | Author: | Axess | | Homepage: | http://www.b0f.com | | File Size: | 1009 | | Last Modified: | Apr 21 22:04:00 2000 |
| MD5 Checksum: | 7fedda4412646f990615f444f96a5965 |
|
| /// File Name: |
syrin15.zip |
Description:
|
Buffer Syringe is a tool for win32 that tests a daemon for buffer overflow on it's parameter(s) sort of "brute forcing" or "stressing" the daemon by means of injecting a user specified parameter or a command with a value of a user specified number of characters to the daemon. Chances are, if the parameter being tested is vulnerable to an overflow, and the user specified number of characters exceeds that of the parameter's limit, then the daemon would likely crash.
| | Author: | Digital Monkey | | Homepage: | http://b0f.freebsd.lublin.pl | | File Size: | 27016 | | Last Modified: | May 17 18:37:34 2000 |
| MD5 Checksum: | 51bab6a00325ec97984338d5a6892f72 |
|
| /// File Name: |
tp2.sh |
Description:
|
Timbuktu Pro 2.0b650 denial of service exploit.
| | Author: | eth0 | | Homepage: | http://b0f.freebsd.lublin.pl | | File Size: | 1522 | | Last Modified: | Apr 27 18:24:08 2000 |
| MD5 Checksum: | 9f2830f69b5d9919739d014f885ba830 |
|
| /// File Name: |
trappa.tar.gz |
Description:
|
Trappa detects a CGI scan and sends an alert message to syslog with the attackers IP+Web Browser. Works by installing decoy CGI scripts in the cgi-bin directory.
| | Author: | Narrow | | Homepage: | http://www.b0f.com | | File Size: | 1620 | | Last Modified: | May 8 00:26:54 2000 |
| MD5 Checksum: | 363448532830a960dc354287a21ad11f |
|
| /// File Name: |
umount.c |
Description:
|
FreeBSD 3.3 /sbin/umount exploit.
| | Author: | Venglin | | Homepage: | http://b0f.freebsd.lublin.pl | | File Size: | 1758 | | Last Modified: | Mar 29 23:04:00 2000 |
| MD5 Checksum: | 9771ba0845affa761cd9b94dea51b1b1 |
|
| /// File Name: |
warftpd.c |
Description:
|
WarFtpd dos attack - The buffer overflow seems to occur because the bound check of the command of MKD/CWD is imperfect. War FTPd 1.70-1 does fix this problem, but it contains other vulnerabilities.
| | Author: | eth0 | | Homepage: | http://www.b0f.com | | File Size: | 2298 | | Last Modified: | Apr 15 23:30:00 2000 |
| MD5 Checksum: | 7b5df6570bf8564ddc9a989902540d66 |
|
| /// File Name: |
www.c |
Description:
|
Novell NetWare webservers remote denial of service - Tested on Novell NetWare 4.11 with Novell-HTTP-Server/3.1R1, Novell NetWare 4.1 with Novell-HTTP-Server/2.51R1, Novell NetWare ?.? with YAWN/1.05.
| | Author: | Venglin | | Homepage: | http://b0f.freebsd.lublin.pl | | File Size: | 4069 | | Last Modified: | Apr 3 22:04:00 2000 |
| MD5 Checksum: | 576b4950d530b2d4e4aec61b212f3cdc |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
