home *** CD-ROM | disk | FTP | other *** search
| MacBinary | 1998-07-17 | 29.9 KB | [TEXT/ttxt] |
open in: 
MacOS 8.1
|
Win98
|
DOS
browse contents |
view JSON data
|
view as text
This file was processed as: MacBinary
(archive/macBinary).
| Confidence | Program | Detection | Match Type | Support
|
|---|
| 10%
| dexvert
| MacBinary (archive/macBinary)
| fallback
| Supported |
| 1%
| dexvert
| Text File (text/txt)
| fallback
| Supported |
| 100%
| file
| MacBinary II, inited, Fri Jul 17 16:33:36 1998, modified Fri Jul 17 16:33:36 1998, creator SimpleText, type ASCII, 29971 bytes "Exploits Index" , at 0x7593 332 bytes resource
| default (weak)
| |
| 99%
| file
| data
| default
| |
| 74%
| TrID
| Macintosh plain text (MacBinary)
| default
| |
| 25%
| TrID
| MacBinary 2
| default (weak)
| |
| 100%
| siegfried
| fmt/1762 MacBinary (II)
| default
| |
| 100%
| lsar
| MacBinary
| default
|
|
| id metadata |
|---|
| key | value |
|---|
| macFileType | [TEXT] |
| macFileCreator | [ttxt] |
hex view+--------+-------------------------+-------------------------+--------+--------+
|00000000| 00 0e 45 78 70 6c 6f 69 | 74 73 20 49 6e 64 65 78 |..Exploi|ts Index|
|00000010| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000020| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000030| 00 00 00 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |........|........|
|00000040| 00 54 45 58 54 74 74 78 | 74 01 00 00 00 00 00 00 |.TEXTttx|t.......|
|00000050| 00 00 00 00 00 75 13 00 | 00 01 4c b1 d5 65 a0 b1 |.....u..|..L..e..|
|00000060| d5 65 a0 00 00 00 00 00 | 00 00 00 00 00 00 00 00 |.e......|........|
|00000070| 00 00 00 00 00 00 00 00 | 00 00 81 81 9f 70 00 00 |........|.....p..|
|00000080| 45 78 70 6c 6f 69 74 73 | 20 41 72 63 68 69 76 65 |Exploits| Archive|
|00000090| 0d 0d 0d 0d 54 68 69 73 | 20 69 73 20 6d 79 20 55 |....This| is my U|
|000000a0| 6e 73 6f 72 74 65 64 20 | 45 78 70 6c 6f 69 74 73 |nsorted |Exploits|
|000000b0| 20 41 72 63 68 69 76 65 | 2e 20 59 6f 75 20 63 61 | Archive|. You ca|
|000000c0| 6e 20 66 69 6e 64 20 65 | 78 70 6c 6f 69 74 73 20 |n find e|xploits |
|000000d0| 74 68 61 74 20 72 61 6e | 67 65 20 66 72 6f 6d 20 |that ran|ge from |
|000000e0| 44 65 6e 69 61 6c 20 6f | 66 20 53 65 72 76 69 63 |Denial o|f Servic|
|000000f0| 65 20 41 74 74 61 63 6b | 73 20 74 6f 20 62 75 66 |e Attack|s to buf|
|00000100| 66 65 72 20 6f 76 65 72 | 66 6c 6f 77 73 2e 20 0d |fer over|flows. .|
|00000110| 0d 0d 0d 20 20 54 61 72 | 67 61 0d 20 20 20 20 20 |... Tar|ga. |
|00000120| 20 20 20 20 20 20 20 20 | 20 20 20 4d 75 6c 74 69 | | Multi|
|00000130| 2d 70 6c 61 74 66 6f 72 | 6d 20 44 6f 53 20 61 74 |-platfor|m DoS at|
|00000140| 74 61 63 6b 20 77 68 69 | 63 68 20 69 6e 74 65 67 |tack whi|ch integ|
|00000150| 72 61 74 65 73 20 62 6f | 6e 6b 2c 20 6a 6f 6c 74 |rates bo|nk, jolt|
|00000160| 2c 20 6c 61 6e 64 2c 20 | 6e 65 73 74 65 61 2c 20 |, land, |nestea, |
|00000170| 6e 65 77 74 65 61 72 2c | 20 73 79 6e 64 72 6f 70 |newtear,| syndrop|
|00000180| 2c 20 74 65 61 72 64 72 | 6f 70 2c 20 61 6e 64 20 |, teardr|op, and |
|00000190| 77 69 6e 6e 75 6b 65 2e | 20 0d 20 20 49 50 20 53 |winnuke.| . IP S|
|000001a0| 63 61 6e 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |can. | |
|000001b0| 20 20 20 20 41 20 73 69 | 6d 70 6c 65 20 74 6f 20 | A si|mple to |
|000001c0| 75 73 65 20 55 6e 69 78 | 20 49 50 20 73 63 61 6e |use Unix| IP scan|
|000001d0| 6e 65 72 20 63 6f 64 65 | 64 20 62 79 20 6d 79 73 |ner code|d by mys|
|000001e0| 65 6c 66 2e 20 0d 20 20 | 41 4f 4c 20 44 6f 53 0d |elf. . |AOL DoS.|
|000001f0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00000200| 44 65 6e 69 61 6c 20 6f | 66 20 53 65 72 76 69 63 |Denial o|f Servic|
|00000210| 65 20 41 74 74 61 63 6b | 73 20 66 6f 72 20 41 4f |e Attack|s for AO|
|00000220| 4c 20 49 6e 73 74 61 6e | 74 20 4d 65 73 73 61 67 |L Instan|t Messag|
|00000230| 65 72 20 61 6e 64 20 41 | 4f 4c 20 4d 61 69 6c 2e |er and A|OL Mail.|
|00000240| 20 0d 20 20 49 43 51 20 | 48 69 6a 61 63 6b 69 6e | . ICQ |Hijackin|
|00000250| 67 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |g. | |
|00000260| 20 20 54 61 6b 65 20 6f | 76 65 72 20 73 6f 6d 65 | Take o|ver some|
|00000270| 6f 6e 65 27 73 20 49 43 | 51 20 55 49 4e 2e 20 0d |one's IC|Q UIN. .|
|00000280| 20 20 47 61 72 62 61 67 | 65 20 47 65 6e 65 72 61 | Garbag|e Genera|
|00000290| 74 6f 72 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |tor. | |
|000002a0| 20 20 20 20 47 65 6e 65 | 72 61 74 65 20 61 20 66 | Gene|rate a f|
|000002b0| 69 6c 65 20 66 75 6c 6c | 20 6f 66 20 67 61 72 62 |ile full| of garb|
|000002c0| 61 67 65 20 74 6f 20 62 | 65 20 75 73 65 64 20 6c |age to b|e used l|
|000002d0| 61 74 65 72 2e 20 0d 20 | 20 6d 49 52 43 20 57 6f |ater. . | mIRC Wo|
|000002e0| 72 6d 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |rm. | |
|000002f0| 20 20 20 41 20 6d 49 52 | 43 20 57 6f 72 6d 20 74 | A mIR|C Worm t|
|00000300| 68 61 74 20 74 72 61 76 | 65 6c 65 64 20 6f 6e 20 |hat trav|eled on |
|00000310| 61 72 6f 75 6e 64 20 49 | 52 43 20 66 6f 72 20 61 |around I|RC for a|
|00000320| 20 6c 6f 6e 67 20 74 69 | 6d 65 2e 20 0d 20 20 4f | long ti|me. . O|
|00000330| 76 65 72 64 72 6f 70 0d | 20 20 20 20 20 20 20 20 |verdrop.| |
|00000340| 20 20 20 20 20 20 20 20 | 4c 69 6e 75 78 20 32 2e | |Linux 2.|
|00000350| 30 2e 33 33 20 70 72 69 | 6e 74 6b 20 61 62 75 73 |0.33 pri|ntk abus|
|00000360| 65 28 62 61 73 65 64 20 | 6f 6e 20 74 65 61 72 64 |e(based |on teard|
|00000370| 72 6f 70 29 2e 20 0d 20 | 20 4e 65 73 74 65 61 32 |rop). . | Nestea2|
|00000380| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00000390| 20 45 78 70 6c 6f 69 74 | 73 20 74 68 65 20 22 6f | Exploit|s the "o|
|000003a0| 66 66 20 62 79 20 6f 6e | 65 20 69 70 20 68 65 61 |ff by on|e ip hea|
|000003b0| 64 65 72 22 20 62 75 67 | 20 69 6e 20 74 68 65 20 |der" bug| in the |
|000003c0| 6c 69 6e 75 78 20 69 70 | 20 66 72 61 67 20 63 6f |linux ip| frag co|
|000003d0| 64 65 28 73 65 63 6f 6e | 64 20 76 65 72 73 69 6f |de(secon|d versio|
|000003e0| 6e 20 6f 66 20 6e 65 73 | 74 65 61 29 2e 20 0d 20 |n of nes|tea). . |
|000003f0| 20 4e 65 73 74 65 61 0d | 20 20 20 20 20 20 20 20 | Nestea.| |
|00000400| 20 20 20 20 20 20 20 20 | 45 78 70 6c 6f 69 74 73 | |Exploits|
|00000410| 20 74 68 65 20 22 6f 66 | 66 20 62 79 20 6f 6e 65 | the "of|f by one|
|00000420| 20 69 70 20 68 65 61 64 | 65 72 22 20 62 75 67 20 | ip head|er" bug |
|00000430| 69 6e 20 74 68 65 20 6c | 69 6e 75 78 20 69 70 20 |in the l|inux ip |
|00000440| 66 72 61 67 20 63 6f 64 | 65 28 72 69 70 20 6f 66 |frag cod|e(rip of|
|00000450| 20 54 65 61 72 64 72 6f | 70 29 2e 20 0d 20 20 41 | Teardro|p). . A|
|00000460| 73 63 65 6e 64 20 4b 69 | 6c 6c 20 49 49 0d 20 20 |scend Ki|ll II. |
|00000470| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 53 65 | | Se|
|00000480| 6e 64 73 20 61 20 73 70 | 65 63 69 61 6c 6c 79 20 |nds a sp|ecially |
|00000490| 63 6f 6e 73 74 72 75 63 | 74 65 64 20 55 44 50 20 |construc|ted UDP |
|000004a0| 70 61 63 6b 65 74 20 6f | 6e 20 74 68 65 20 64 69 |packet o|n the di|
|000004b0| 73 63 61 72 64 20 70 6f | 72 74 20 28 39 29 20 77 |scard po|rt (9) w|
|000004c0| 68 69 63 68 20 63 61 75 | 73 65 20 41 73 63 65 6e |hich cau|se Ascen|
|000004d0| 64 20 72 6f 75 74 65 72 | 73 20 74 6f 20 72 65 62 |d router|s to reb|
|000004e0| 6f 6f 74 2e 20 0d 20 20 | 49 45 20 34 2e 30 31 20 |oot. . |IE 4.01 |
|000004f0| 62 75 67 73 0d 20 20 20 | 20 20 20 20 20 20 20 20 |bugs. | |
|00000500| 20 20 20 20 20 43 72 61 | 73 68 65 73 20 49 6e 74 | Cra|shes Int|
|00000510| 65 72 6e 65 74 20 45 78 | 70 6c 6f 72 65 72 20 34 |ernet Ex|plorer 4|
|00000520| 2e 30 31 20 6f 6e 20 57 | 69 6e 39 35 2f 4e 54 2e |.01 on W|in95/NT.|
|00000530| 20 0d 20 20 46 72 61 67 | 67 6c 65 0d 20 20 20 20 | . Frag|gle. |
|00000540| 20 20 20 20 20 20 20 20 | 20 20 20 20 41 20 76 65 | | A ve|
|00000550| 72 73 69 6f 6e 20 73 6d | 75 72 66 2e 63 20 77 69 |rsion sm|urf.c wi|
|00000560| 74 68 20 61 20 75 64 70 | 20 74 77 69 73 74 2e 20 |th a udp| twist. |
|00000570| 0d 20 20 73 6d 75 72 66 | 2e 63 0d 20 20 20 20 20 |. smurf|.c. |
|00000580| 20 20 20 20 20 20 20 20 | 20 20 20 53 70 6f 6f 66 | | Spoof|
|00000590| 73 20 49 4d 43 50 20 70 | 61 63 6b 65 74 73 20 72 |s IMCP p|ackets r|
|000005a0| 65 73 75 6c 74 69 6e 67 | 20 69 6e 20 6d 75 6c 74 |esulting| in mult|
|000005b0| 69 70 6c 65 20 72 65 70 | 6c 69 65 73 20 74 6f 20 |iple rep|lies to |
|000005c0| 61 20 68 6f 73 74 20 66 | 72 6f 6d 20 61 20 73 69 |a host f|rom a si|
|000005d0| 6e 67 6c 65 20 70 61 63 | 6b 65 74 2e 0d 20 20 53 |ngle pac|ket.. S|
|000005e0| 79 6e 64 72 6f 70 0d 20 | 20 20 20 20 20 20 20 20 |yndrop. | |
|000005f0| 20 20 20 20 20 20 20 41 | 20 76 65 72 73 69 6f 6e | A| version|
|00000600| 20 6f 66 20 74 65 61 72 | 64 72 6f 70 20 77 69 74 | of tear|drop wit|
|00000610| 68 20 61 20 6d 69 78 20 | 6f 66 20 53 59 4e 2e 0d |h a mix |of SYN..|
|00000620| 20 20 4e 65 77 54 65 61 | 72 0d 20 20 20 20 20 20 | NewTea|r. |
|00000630| 20 20 20 20 20 20 20 20 | 20 20 41 20 6e 65 77 20 | | A new |
|00000640| 74 65 61 72 64 72 6f 70 | 28 6b 6e 6f 77 6e 20 61 |teardrop|(known a|
|00000650| 73 20 4e 65 77 54 65 61 | 72 20 6f 72 20 54 65 61 |s NewTea|r or Tea|
|00000660| 72 64 72 6f 70 20 49 49 | 29 20 74 79 70 65 20 65 |rdrop II|) type e|
|00000670| 78 70 6c 6f 69 74 2e 20 | 41 66 66 65 63 74 73 20 |xploit. |Affects |
|00000680| 4e 54 34 2c 20 61 6e 64 | 20 57 69 6e 39 35 2e 0d |NT4, and| Win95..|
|00000690| 20 20 42 6f 69 6e 6b 2e | 63 0d 20 20 20 20 20 20 | Boink.|c. |
|000006a0| 20 20 20 20 20 20 20 20 | 20 20 4d 6f 64 69 66 69 | | Modifi|
|000006b0| 65 64 20 76 65 72 73 69 | 6f 6e 20 6f 66 20 42 6f |ed versi|on of Bo|
|000006c0| 6e 6b 20 74 68 61 74 20 | 43 72 61 73 68 65 73 20 |nk that |Crashes |
|000006d0| 2a 70 61 74 63 68 65 64 | 2a 20 77 69 6e 39 35 2f |*patched|* win95/|
|000006e0| 4e 54 20 6d 61 63 68 69 | 6e 65 73 2e 0d 20 20 42 |NT machi|nes.. B|
|000006f0| 6f 6e 6b 2e 63 0d 20 20 | 20 20 20 20 20 20 20 20 |onk.c. | |
|00000700| 20 20 20 20 20 20 4d 6f | 64 69 66 69 65 64 20 76 | Mo|dified v|
|00000710| 65 72 73 69 6f 6e 20 6f | 66 20 54 65 61 72 64 72 |ersion o|f Teardr|
|00000720| 6f 70 20 74 68 61 74 20 | 65 66 66 65 63 74 73 20 |op that |effects |
|00000730| 22 70 61 74 63 68 65 64 | 22 20 57 69 6e 39 35 2f |"patched|" Win95/|
|00000740| 4e 54 2e 0d 20 20 48 61 | 6e 73 6f 6e 2e 63 0d 20 |NT.. Ha|nson.c. |
|00000750| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 45 | | E|
|00000760| 78 70 6c 6f 69 74 20 6d | 49 52 43 20 56 65 72 73 |xploit m|IRC Vers|
|00000770| 69 6f 6e 20 35 2e 33 27 | 73 20 6e 65 77 20 73 6f |ion 5.3'|s new so|
|00000780| 63 6b 65 74 20 66 65 61 | 74 75 72 65 20 61 6e 64 |cket fea|ture and|
|00000790| 20 63 72 61 73 68 20 74 | 68 65 20 63 6c 69 65 6e | crash t|he clien|
|000007a0| 74 20 61 6e 64 20 6d 61 | 6b 65 20 74 68 65 20 77 |t and ma|ke the w|
|000007b0| 69 6e 64 6f 77 73 39 35 | 2f 4e 54 20 65 6e 76 69 |indows95|/NT envi|
|000007c0| 72 6f 6e 6d 65 6e 74 20 | 72 75 6e 20 76 65 72 79 |ronment |run very|
|000007d0| 20 76 65 72 79 0d 20 20 | 20 20 20 20 20 20 20 20 | very. | |
|000007e0| 20 20 20 20 20 20 73 6c | 6f 77 20 28 50 65 6e 74 | sl|ow (Pent|
|000007f0| 69 75 6d 20 77 69 6c 6c | 20 6e 6f 77 20 62 65 20 |ium will| now be |
|00000800| 73 6c 75 67 67 69 73 68 | 20 61 73 20 61 20 32 38 |sluggish| as a 28|
|00000810| 36 29 2e 0d 20 20 54 65 | 61 72 64 72 6f 70 2e 63 |6).. Te|ardrop.c|
|00000820| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00000830| 20 45 78 70 6c 6f 69 74 | 73 20 74 68 65 20 74 68 | Exploit|s the th|
|00000840| 65 20 6f 76 65 72 6c 61 | 70 70 69 6e 67 20 49 50 |e overla|pping IP|
|00000850| 20 66 72 61 67 6d 65 6e | 74 20 62 75 67 2e 0d 20 | fragmen|t bug.. |
|00000860| 20 50 46 4f 42 75 67 2e | 63 0d 20 20 20 20 20 20 | PFOBug.|c. |
|00000870| 20 20 20 20 20 20 20 20 | 20 20 45 78 70 6c 6f 69 | | Exploi|
|00000880| 74 73 20 74 68 65 20 50 | 65 6e 74 69 75 6d 20 46 |ts the P|entium F|
|00000890| 4f 20 6f 72 20 46 4f 4f | 46 20 42 75 67 2e 0d 20 |O or FOO|F Bug.. |
|000008a0| 20 46 4f 4f 46 42 55 47 | 2e 43 0d 20 20 20 20 20 | FOOFBUG|.C. |
|000008b0| 20 20 20 20 20 20 20 20 | 20 20 20 45 78 70 6c 6f | | Explo|
|000008c0| 69 74 73 20 74 68 65 20 | 50 65 6e 74 69 75 6d 20 |its the |Pentium |
|000008d0| 46 4f 20 6f 72 20 46 4f | 4f 46 20 42 75 67 2e 0d |FO or FO|OF Bug..|
|000008e0| 20 20 77 65 62 5f 73 6e | 69 66 66 2e 63 0d 20 20 | web_sn|iff.c. |
|000008f0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 41 20 | | A |
|00000900| 4c 69 6e 75 78 20 73 6e | 69 66 66 65 72 20 74 68 |Linux sn|iffer th|
|00000910| 61 74 20 69 73 20 64 65 | 73 69 67 6e 65 64 20 74 |at is de|signed t|
|00000920| 6f 20 72 65 74 72 69 65 | 76 65 20 77 65 62 20 75 |o retrie|ve web u|
|00000930| 73 65 72 6e 61 6d 65 73 | 20 61 6e 64 20 70 61 73 |sernames| and pas|
|00000940| 73 77 6f 72 64 73 2e 0d | 20 20 78 66 38 36 5f 70 |swords..| xf86_p|
|00000950| 6f 72 74 73 2e 74 78 74 | 0d 20 20 20 20 20 20 20 |orts.txt|. |
|00000960| 20 20 20 20 20 20 20 20 | 20 41 20 6e 6f 72 6d 61 | | A norma|
|00000970| 6c 20 75 73 65 72 20 63 | 61 6e 20 72 75 6e 20 58 |l user c|an run X|
|00000980| 20 6f 6e 20 61 20 72 65 | 73 65 72 76 65 64 20 70 | on a re|served p|
|00000990| 6f 72 74 20 74 68 75 73 | 20 62 6c 6f 63 6b 69 6e |ort thus| blockin|
|000009a0| 67 20 6c 65 67 69 74 6d | 61 74 65 20 64 61 65 6d |g legitm|ate daem|
|000009b0| 6f 6e 73 2e 0d 20 20 69 | 64 65 6e 74 64 5f 61 74 |ons.. i|dentd_at|
|000009c0| 74 61 63 6b 2e 74 78 74 | 0d 20 20 20 20 20 20 20 |tack.txt|. |
|000009d0| 20 20 20 20 20 20 20 20 | 20 41 20 6d 61 73 73 69 | | A massi|
|000009e0| 76 65 20 61 6d 6f 75 6e | 74 20 6f 66 20 61 75 74 |ve amoun|t of aut|
|000009f0| 68 6f 72 69 7a 61 74 69 | 6f 6e 20 72 65 71 75 65 |horizati|on reque|
|00000a00| 73 74 73 20 63 61 6e 20 | 72 65 6e 64 65 72 20 61 |sts can |render a|
|00000a10| 20 73 79 73 74 65 6d 20 | 75 6e 75 73 61 62 6c 65 | system |unusable|
|00000a20| 2e 0d 20 20 73 65 63 75 | 72 65 5f 73 68 65 6c 6c |.. secu|re_shell|
|00000a30| 2e 74 78 74 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.txt. | |
|00000a40| 20 20 20 20 20 55 73 69 | 6e 67 20 53 53 48 2c 20 | Usi|ng SSH, |
|00000a50| 61 20 6e 6f 6e 2d 72 6f | 6f 74 20 75 73 65 72 20 |a non-ro|ot user |
|00000a60| 63 61 6e 20 6f 70 65 6e | 20 70 72 69 76 6c 65 67 |can open| privleg|
|00000a70| 65 64 20 70 6f 72 74 73 | 20 61 6e 64 20 72 65 64 |ed ports| and red|
|00000a80| 69 72 65 63 74 20 74 68 | 65 6d 2e 0d 20 20 7a 67 |irect th|em.. zg|
|00000a90| 76 5f 65 78 70 6c 6f 69 | 74 2e 63 0d 20 20 20 20 |v_exploi|t.c. |
|00000aa0| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|00000ab0| 20 77 69 6c 6c 20 6f 76 | 65 72 77 72 69 74 65 20 | will ov|erwrite |
|00000ac0| 61 20 62 75 66 66 65 72 | 20 69 6e 20 2f 75 73 72 |a buffer| in /usr|
|00000ad0| 2f 62 69 6e 2f 7a 67 76 | 20 6f 6e 20 52 65 64 68 |/bin/zgv| on Redh|
|00000ae0| 61 74 20 4c 69 6e 75 78 | 20 73 79 73 74 65 6d 73 |at Linux| systems|
|00000af0| 2c 20 67 69 76 69 6e 67 | 20 72 6f 6f 74 2e 0d 20 |, giving| root.. |
|00000b00| 20 73 67 69 5f 68 74 6d | 6c 2e 74 78 74 0d 20 20 | sgi_htm|l.txt. |
|00000b10| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 49 74 | | It|
|00000b20| 20 69 73 20 70 6f 73 73 | 69 62 6c 65 20 74 6f 20 | is poss|ible to |
|00000b30| 65 78 65 63 75 74 65 20 | 72 65 6d 6f 74 65 20 63 |execute |remote c|
|00000b40| 6f 6d 6d 61 6e 64 73 20 | 6f 6e 20 49 52 49 58 20 |ommands |on IRIX |
|00000b50| 36 2e 33 20 61 6e 64 20 | 36 2e 34 20 76 69 61 20 |6.3 and |6.4 via |
|00000b60| 2f 75 73 72 2f 73 79 73 | 61 64 6d 2e 0d 20 20 62 |/usr/sys|adm.. b|
|00000b70| 69 6e 64 5f 6e 75 6b 65 | 2e 74 78 74 0d 20 20 20 |ind_nuke|.txt. |
|00000b80| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 42 69 6e | | Bin|
|00000b90| 64 38 2e 31 2e 28 31 29 | 20 63 61 6e 27 74 20 75 |d8.1.(1)| can't u|
|00000ba0| 70 64 61 74 65 20 74 68 | 65 20 73 61 6d 65 20 52 |pdate th|e same R|
|00000bb0| 52 20 6d 6f 72 65 20 74 | 68 61 6e 20 6f 6e 63 65 |R more t|han once|
|00000bc0| 20 69 6e 20 74 68 65 20 | 73 61 6d 65 20 44 4e 53 | in the |same DNS|
|00000bd0| 20 70 61 63 6b 65 74 2e | 0d 20 20 64 67 75 78 5f | packet.|. dgux_|
|00000be0| 66 69 6e 67 65 72 64 2e | 74 78 74 0d 20 20 20 20 |fingerd.|txt. |
|00000bf0| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 65 20 | | The |
|00000c00| 66 69 6e 67 65 72 64 20 | 74 68 61 74 20 73 68 69 |fingerd |that shi|
|00000c10| 70 73 20 77 2f 20 64 67 | 75 78 20 61 6c 6c 6f 77 |ps w/ dg|ux allow|
|00000c20| 73 20 72 65 6d 6f 74 65 | 20 65 78 65 63 75 74 69 |s remote| executi|
|00000c30| 6f 6e 20 6f 66 20 61 72 | 62 69 74 72 61 72 79 20 |on of ar|bitrary |
|00000c40| 63 6f 6d 6d 61 6e 64 73 | 2e 0d 20 20 73 6d 62 5f |commands|.. smb_|
|00000c50| 6d 6f 75 6e 74 2e 63 0d | 20 20 20 20 20 20 20 20 |mount.c.| |
|00000c60| 20 20 20 20 20 20 20 20 | 54 68 69 73 20 6f 76 65 | |This ove|
|00000c70| 72 77 72 69 74 65 73 20 | 61 20 62 75 66 66 65 72 |rwrites |a buffer|
|00000c80| 20 6f 6e 20 4c 69 6e 75 | 78 20 73 79 73 74 65 6d | on Linu|x system|
|00000c90| 73 20 69 6e 20 73 6d 62 | 6d 6f 75 6e 74 20 66 72 |s in smb|mount fr|
|00000ca0| 6f 6d 20 73 6d 62 66 73 | 2d 32 2e 30 2e 31 2e 0d |om smbfs|-2.0.1..|
|00000cb0| 20 20 69 6e 6e 64 5f 65 | 78 70 6c 6f 69 74 2e 63 | innd_e|xploit.c|
|00000cc0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00000cd0| 20 4f 76 65 72 77 72 69 | 74 65 73 20 61 20 62 75 | Overwri|tes a bu|
|00000ce0| 66 66 65 72 20 69 6e 20 | 69 6e 6e 64 20 6f 6e 20 |ffer in |innd on |
|00000cf0| 4c 69 6e 75 78 20 78 38 | 36 20 73 79 73 74 65 6d |Linux x8|6 system|
|00000d00| 73 20 74 68 75 73 20 67 | 69 76 69 6e 67 20 61 20 |s thus g|iving a |
|00000d10| 72 65 6d 6f 74 65 20 73 | 68 65 6c 6c 2e 0d 20 20 |remote s|hell.. |
|00000d20| 73 6d 6c 6f 67 69 63 2e | 63 0d 20 20 20 20 20 20 |smlogic.|c. |
|00000d30| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 69 | | This i|
|00000d40| 73 20 61 20 66 75 6c 6c | 79 20 66 75 6e 63 74 69 |s a full|y functi|
|00000d50| 6f 6e 61 6c 20 6c 6f 67 | 69 63 20 62 6f 6d 62 20 |onal log|ic bomb |
|00000d60| 64 65 73 69 67 6e 65 64 | 20 72 65 6e 64 65 72 20 |designed| render |
|00000d70| 4c 69 6e 75 78 20 73 79 | 73 74 65 6d 73 20 75 6e |Linux sy|stems un|
|00000d80| 75 73 65 61 62 6c 65 2e | 0d 20 20 6c 64 2e 73 6f |useable.|. ld.so|
|00000d90| 2e 63 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.c. | |
|00000da0| 20 20 20 4f 76 65 72 77 | 72 69 74 65 73 20 61 20 | Overw|rites a |
|00000db0| 62 75 66 66 65 72 20 76 | 69 61 20 4c 44 5f 50 52 |buffer v|ia LD_PR|
|00000dc0| 45 4c 4f 41 44 20 65 6e | 76 2e 20 76 61 72 69 61 |ELOAD en|v. varia|
|00000dd0| 62 6c 65 2c 20 67 69 76 | 69 6e 67 20 72 6f 6f 74 |ble, giv|ing root|
|00000de0| 20 6f 6e 20 4c 69 6e 75 | 78 2e 0d 20 20 73 65 79 | on Linu|x.. sey|
|00000df0| 6f 6e 5f 65 78 70 6c 6f | 69 74 2e 73 68 0d 20 20 |on_explo|it.sh. |
|00000e00| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 45 78 | | Ex|
|00000e10| 70 6c 6f 69 74 20 66 6f | 72 20 73 65 79 6f 6e 2c |ploit fo|r seyon,|
|00000e20| 20 67 69 76 69 6e 67 20 | 79 6f 75 20 74 68 65 20 | giving |you the |
|00000e30| 65 75 69 64 20 6f 72 20 | 65 67 69 64 20 6f 66 20 |euid or |egid of |
|00000e40| 77 68 61 74 65 76 65 72 | 20 73 65 79 6f 6e 20 69 |whatever| seyon i|
|00000e50| 73 20 73 75 69 64 20 74 | 6f 2e 0d 20 20 61 69 78 |s suid t|o.. aix|
|00000e60| 64 74 61 63 74 69 6f 6e | 2e 63 0d 20 20 20 20 20 |dtaction|.c. |
|00000e70| 20 20 20 20 20 20 20 20 | 20 20 20 4f 76 65 72 77 | | Overw|
|00000e80| 72 69 74 65 73 20 61 20 | 62 75 66 66 65 72 20 69 |rites a |buffer i|
|00000e90| 6e 20 2f 75 73 72 2f 64 | 74 2f 62 69 6e 2f 64 74 |n /usr/d|t/bin/dt|
|00000ea0| 61 63 74 69 6f 6e 20 76 | 69 61 20 48 4f 4d 45 20 |action v|ia HOME |
|00000eb0| 65 6e 76 2e 20 76 61 72 | 69 61 62 6c 65 2c 20 67 |env. var|iable, g|
|00000ec0| 69 76 69 6e 67 20 72 6f | 6f 74 2e 0d 20 20 64 61 |iving ro|ot.. da|
|00000ed0| 74 61 70 69 70 65 2e 63 | 0d 20 20 20 20 20 20 20 |tapipe.c|. |
|00000ee0| 20 20 20 20 20 20 20 20 | 20 4d 61 6b 65 73 20 61 | | Makes a|
|00000ef0| 20 70 69 70 65 20 62 65 | 74 77 65 65 6e 20 61 20 | pipe be|tween a |
|00000f00| 6c 69 73 74 65 6e 20 70 | 6f 72 74 20 6f 6e 20 6c |listen p|ort on l|
|00000f10| 6f 63 61 6c 68 6f 73 74 | 20 61 6e 64 20 61 20 70 |ocalhost| and a p|
|00000f20| 6f 72 74 20 6f 6e 20 61 | 20 72 65 6d 6f 74 65 20 |ort on a| remote |
|00000f30| 6d 61 63 68 69 6e 65 2e | 0d 20 20 73 70 69 6e 67 |machine.|. sping|
|00000f40| 2e 74 61 72 2e 67 7a 0d | 20 20 20 20 20 20 20 20 |.tar.gz.| |
|00000f50| 20 20 20 20 20 20 20 20 | 4c 69 6e 75 78 20 62 69 | |Linux bi|
|00000f60| 6e 61 72 79 20 61 6e 64 | 20 73 6f 75 72 63 65 20 |nary and| source |
|00000f70| 6f 66 20 27 73 70 69 6e | 67 27 20 77 68 69 63 68 |of 'spin|g' which|
|00000f80| 20 63 61 75 73 65 73 20 | 57 69 6e 39 35 20 6d 61 | causes |Win95 ma|
|00000f90| 63 68 69 6e 65 73 20 74 | 6f 20 63 72 61 73 68 2e |chines t|o crash.|
|00000fa0| 0d 20 20 6c 69 6e 75 78 | 5f 68 74 74 70 64 2e 63 |. linux|_httpd.c|
|00000fb0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00000fc0| 20 4f 76 65 72 77 72 69 | 74 65 73 20 61 20 62 75 | Overwri|tes a bu|
|00000fd0| 66 66 65 72 20 69 6e 20 | 4e 53 43 41 20 68 74 74 |ffer in |NSCA htt|
|00000fe0| 70 64 20 76 31 2e 33 20 | 6f 6e 20 6c 69 6e 75 78 |pd v1.3 |on linux|
|00000ff0| 20 73 79 73 74 65 6d 73 | 2c 20 67 69 76 69 6e 67 | systems|, giving|
|00001000| 20 61 20 72 65 6d 6f 74 | 65 20 73 68 65 6c 6c 2e | a remot|e shell.|
|00001010| 0d 20 20 73 67 69 5f 63 | 67 69 68 61 6e 64 6c 65 |. sgi_c|gihandle|
|00001020| 72 2e 74 78 74 0d 20 20 | 20 20 20 20 20 20 20 20 |r.txt. | |
|00001030| 20 20 20 20 20 20 4f 6e | 20 49 52 49 58 20 73 79 | On| IRIX sy|
|00001040| 73 74 65 6d 73 2c 20 2f | 63 67 69 2d 62 69 6e 2f |stems, /|cgi-bin/|
|00001050| 68 61 6e 64 6c 65 72 20 | 63 61 6e 20 62 65 20 75 |handler |can be u|
|00001060| 73 65 64 20 74 6f 20 69 | 73 73 75 65 20 61 72 62 |sed to i|ssue arb|
|00001070| 69 74 72 61 72 79 20 63 | 6f 6d 6d 61 6e 64 73 2e |itrary c|ommands.|
|00001080| 0d 20 20 77 75 66 74 70 | 64 5f 75 6d 61 73 6b 2e |. wuftp|d_umask.|
|00001090| 74 78 74 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |txt. | |
|000010a0| 20 20 20 20 54 68 65 20 | 75 6d 61 73 6b 20 66 6f | The |umask fo|
|000010b0| 72 20 77 75 66 74 70 64 | 20 32 2e 34 2e 32 2d 62 |r wuftpd| 2.4.2-b|
|000010c0| 31 33 20 69 73 20 30 30 | 32 20 6d 61 6b 69 6e 67 |13 is 00|2 making|
|000010d0| 20 66 69 6c 65 73 20 67 | 72 6f 75 70 20 77 72 69 | files g|roup wri|
|000010e0| 74 65 61 62 6c 65 20 62 | 79 20 61 6e 79 6f 6e 65 |teable b|y anyone|
|000010f0| 2e 0d 20 20 67 6c 69 6d | 70 73 65 5f 68 74 74 70 |.. glim|pse_http|
|00001100| 2e 74 78 74 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.txt. | |
|00001110| 20 20 20 20 20 47 6c 69 | 6d 70 73 65 20 48 54 54 | Gli|mpse HTT|
|00001120| 50 20 28 49 6e 74 65 72 | 66 61 63 65 20 74 6f 20 |P (Inter|face to |
|00001130| 47 6c 69 6d 70 73 65 20 | 53 65 61 72 63 68 20 54 |Glimpse |Search T|
|00001140| 6f 6f 6c 29 20 63 61 6e | 20 69 73 73 75 65 20 72 |ool) can| issue r|
|00001150| 65 6d 6f 74 65 20 63 6f | 6d 6d 61 6e 64 73 2e 0d |emote co|mmands..|
|00001160| 20 20 74 65 6c 6e 65 74 | 5f 63 6f 72 65 2e 74 78 | telnet|_core.tx|
|00001170| 74 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |t. | |
|00001180| 20 20 4f 6e 20 4c 69 6e | 75 78 20 73 79 73 74 65 | On Lin|ux syste|
|00001190| 6d 73 2c 20 69 74 20 69 | 73 20 70 6f 73 73 69 62 |ms, it i|s possib|
|000011a0| 6c 65 20 74 6f 20 67 65 | 74 20 70 61 72 74 20 6f |le to ge|t part o|
|000011b0| 66 20 74 68 65 20 73 68 | 61 64 6f 77 20 66 69 6c |f the sh|adow fil|
|000011c0| 65 20 77 2f 20 63 6f 72 | 65 73 2e 0d 20 20 69 72 |e w/ cor|es.. ir|
|000011d0| 63 64 5f 6b 69 6c 6c 2e | 63 0d 20 20 20 20 20 20 |cd_kill.|c. |
|000011e0| 20 20 20 20 20 20 20 20 | 20 20 4f 76 65 72 77 72 | | Overwr|
|000011f0| 69 74 65 73 20 61 20 62 | 75 66 66 65 72 20 69 6e |ites a b|uffer in|
|00001200| 20 69 72 63 49 49 20 64 | 61 65 6d 6f 6e 73 2c 20 | ircII d|aemons, |
|00001210| 63 61 75 73 69 6e 67 20 | 61 20 73 65 67 6d 65 6e |causing |a segmen|
|00001220| 74 61 74 69 6f 6e 20 66 | 61 75 6c 74 20 69 6e 20 |tation f|ault in |
|00001230| 74 68 65 20 73 65 72 76 | 65 72 2e 0d 20 20 73 6e |the serv|er.. sn|
|00001240| 65 61 6b 69 6e 2e 74 67 | 7a 0d 20 20 20 20 20 20 |eakin.tg|z. |
|00001250| 20 20 20 20 20 20 20 20 | 20 20 41 20 77 61 79 20 | | A way |
|00001260| 74 6f 20 27 72 65 76 65 | 72 73 65 20 74 65 6c 6e |to 'reve|rse teln|
|00001270| 65 74 27 20 66 72 6f 6d | 20 61 20 62 6f 78 20 62 |et' from| a box b|
|00001280| 65 68 69 6e 64 20 61 20 | 66 69 72 65 77 61 6c 6c |ehind a |firewall|
|00001290| 20 74 68 61 74 20 61 6c | 6c 6f 77 73 20 49 43 4d | that al|lows ICM|
|000012a0| 50 20 70 61 63 6b 65 74 | 73 2e 0d 20 20 71 6d 61 |P packet|s.. qma|
|000012b0| 69 6c 5f 65 78 70 6c 6f | 69 74 2e 63 0d 20 20 20 |il_explo|it.c. |
|000012c0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 52 75 6e | | Run|
|000012d0| 73 20 61 20 71 6d 61 69 | 6c 20 73 79 73 74 65 6d |s a qmai|l system|
|000012e0| 20 6f 75 74 20 6f 66 20 | 6d 65 6d 6f 72 79 20 62 | out of |memory b|
|000012f0| 79 20 66 65 65 64 69 6e | 67 20 61 6e 20 69 6e 66 |y feedin|g an inf|
|00001300| 69 6e 69 74 65 20 61 6d | 6f 75 6e 74 20 6f 66 20 |inite am|ount of |
|00001310| 72 65 63 69 70 69 65 6e | 74 73 2e 0d 20 20 71 6d |recipien|ts.. qm|
|00001320| 61 69 6c 2e 74 61 72 2e | 67 7a 0d 20 20 20 20 20 |ail.tar.|gz. |
|00001330| 20 20 20 20 20 20 20 20 | 20 20 20 54 68 69 73 20 | | This |
|00001340| 69 73 20 61 20 72 65 70 | 6c 61 63 65 6d 65 6e 74 |is a rep|lacement|
|00001350| 20 73 65 6e 64 6d 61 69 | 6c 2d 62 69 6e 6d 61 69 | sendmai|l-binmai|
|00001360| 6c 20 73 79 73 74 65 6d | 20 70 72 6f 76 69 64 69 |l system| providi|
|00001370| 6e 67 20 73 65 63 75 72 | 69 74 79 20 61 6e 64 20 |ng secur|ity and |
|00001380| 65 66 66 69 63 69 65 6e | 63 79 2e 0d 20 20 68 5f |efficien|cy.. h_|
|00001390| 72 70 63 69 6e 66 6f 2e | 74 61 72 2e 67 7a 0d 20 |rpcinfo.|tar.gz. |
|000013a0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 41 | | A|
|000013b0| 6c 6c 6f 77 73 20 79 6f | 75 20 74 6f 20 73 6e 65 |llows yo|u to sne|
|000013c0| 61 6b 20 70 61 73 74 20 | 70 6f 72 74 20 66 69 6c |ak past |port fil|
|000013d0| 74 65 72 73 20 6f 6e 20 | 70 6f 72 74 20 31 31 31 |ters on |port 111|
|000013e0| 20 61 6e 64 20 67 65 74 | 20 64 75 6d 70 73 20 6f | and get| dumps o|
|000013f0| 66 20 52 50 43 20 73 65 | 72 76 69 63 65 73 2e 0d |f RPC se|rvices..|
|00001400| 20 20 73 79 6e 6c 6f 67 | 2d 30 2e 31 2e 74 61 72 | synlog|-0.1.tar|
|00001410| 2e 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.gz. | |
|00001420| 20 20 20 20 53 79 6e 6c | 6f 67 20 6d 6f 6e 69 74 | Synl|og monit|
|00001430| 6f 72 73 20 68 61 6c 66 | 20 6f 70 65 6e 20 54 43 |ors half| open TC|
|00001440| 50 20 63 6f 6e 6e 65 63 | 74 69 6f 6e 73 20 73 75 |P connec|tions su|
|00001450| 63 68 20 61 73 20 73 79 | 6e 66 6c 6f 6f 64 73 20 |ch as sy|nfloods |
|00001460| 6f 72 20 73 79 6e 73 63 | 61 6e 73 2e 0d 20 20 6e |or synsc|ans.. n|
|00001470| 65 74 5f 72 70 6d 2e 74 | 78 74 0d 20 20 20 20 20 |et_rpm.t|xt. |
|00001480| 20 20 20 20 20 20 20 20 | 20 20 20 52 65 64 68 61 | | Redha|
|00001490| 74 20 50 61 63 6b 61 67 | 65 20 4d 61 6e 61 67 65 |t Packag|e Manage|
|000014a0| 72 20 28 72 70 6d 29 20 | 63 61 6e 20 62 65 20 75 |r (rpm) |can be u|
|000014b0| 73 65 64 20 74 6f 20 6f | 76 65 72 77 72 69 74 65 |sed to o|verwrite|
|000014c0| 20 61 72 62 69 74 72 61 | 72 79 20 66 69 6c 65 73 | arbitra|ry files|
|000014d0| 2e 0d 20 20 77 72 61 70 | 70 65 72 2d 76 32 2e 74 |.. wrap|per-v2.t|
|000014e0| 67 7a 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |gz. | |
|000014f0| 20 20 20 54 68 69 73 20 | 69 73 20 61 20 67 65 6e | This |is a gen|
|00001500| 65 72 69 63 20 77 72 61 | 70 70 65 72 20 74 6f 20 |eric wra|pper to |
|00001510| 70 72 65 76 65 6e 74 20 | 74 68 65 20 65 78 70 6c |prevent |the expl|
|00001520| 6f 69 74 61 74 69 6f 6e | 20 6f 66 20 73 75 69 64 |oitation| of suid|
|00001530| 2f 73 67 69 64 20 70 72 | 6f 67 72 61 6d 73 2e 0d |/sgid pr|ograms..|
|00001540| 20 20 6c 6f 6e 67 70 61 | 74 68 2e 73 68 0d 20 20 | longpa|th.sh. |
|00001550| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 53 68 | | Sh|
|00001560| 65 6c 6c 20 73 63 72 69 | 70 74 20 74 68 61 74 20 |ell scri|pt that |
|00001570| 69 6d 70 6c 65 6d 65 6e | 74 73 20 61 20 6c 6f 6e |implemen|ts a lon|
|00001580| 67 20 70 61 74 68 20 61 | 74 74 61 63 6b 20 63 61 |g path a|ttack ca|
|00001590| 75 73 69 6e 67 20 76 61 | 72 69 6f 75 73 20 70 72 |using va|rious pr|
|000015a0| 6f 62 6c 65 6d 73 20 6f | 6e 20 4c 69 6e 75 78 2e |oblems o|n Linux.|
|000015b0| 0d 20 20 6c 6f 67 61 72 | 70 2e 74 61 72 2e 67 7a |. logar|p.tar.gz|
|000015c0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|000015d0| 20 55 73 65 66 75 6c 20 | 66 6f 72 20 73 65 65 69 | Useful |for seei|
|000015e0| 6e 67 20 69 66 20 75 73 | 65 72 73 20 6f 6e 20 79 |ng if us|ers on y|
|000015f0| 6f 75 72 20 73 75 62 6e | 65 74 20 61 72 65 20 22 |our subn|et are "|
|00001600| 73 74 65 61 6c 69 6e 67 | 22 20 49 50 20 61 64 64 |stealing|" IP add|
|00001610| 72 65 73 73 65 73 2e 0d | 20 20 6c 69 73 74 68 6f |resses..| listho|
|00001620| 73 74 73 2e 63 0d 20 20 | 20 20 20 20 20 20 20 20 |sts.c. | |
|00001630| 20 20 20 20 20 20 41 20 | 68 6f 73 74 20 72 65 73 | A |host res|
|00001640| 6f 6c 76 69 6e 67 20 70 | 72 6f 67 72 61 6d 20 62 |olving p|rogram b|
|00001650| 61 73 65 64 20 6f 6e 20 | 6e 73 6c 6f 6f 6b 75 70 |ased on |nslookup|
|00001660| 20 61 6e 64 20 6f 74 68 | 65 72 20 70 69 65 63 65 | and oth|er piece|
|00001670| 73 20 6f 66 20 6e 61 6d | 65 64 20 74 6f 6f 6c 73 |s of nam|ed tools|
|00001680| 2e 0d 20 20 73 79 6e 73 | 6e 69 66 66 2e 74 61 72 |.. syns|niff.tar|
|00001690| 2e 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.gz. | |
|000016a0| 20 20 20 20 53 63 72 69 | 70 74 20 69 6e 20 70 65 | Scri|pt in pe|
|000016b0| 72 6c 20 77 68 69 63 68 | 20 77 61 74 63 68 65 73 |rl which| watches|
|000016c0| 20 66 6f 72 20 69 6e 62 | 6f 75 6e 64 20 63 6f 6e | for inb|ound con|
|000016d0| 6e 65 63 74 69 6f 6e 73 | 20 28 53 59 4e 27 73 29 |nections| (SYN's)|
|000016e0| 20 61 6e 64 20 6c 6f 67 | 73 20 74 68 65 6d 2e 0d | and log|s them..|
|000016f0| 20 20 69 6d 61 70 64 5f | 65 78 70 6c 6f 69 74 2e | imapd_|exploit.|
|00001700| 63 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |c. | |
|00001710| 20 20 47 65 74 20 72 65 | 6d 6f 74 65 20 72 6f 6f | Get re|mote roo|
|00001720| 74 20 61 63 63 65 73 73 | 20 6f 6e 20 52 65 64 68 |t access| on Redh|
|00001730| 61 74 20 4c 69 6e 75 78 | 20 73 79 73 74 65 6d 73 |at Linux| systems|
|00001740| 20 62 79 20 6f 76 65 72 | 77 72 69 74 69 6e 67 20 | by over|writing |
|00001750| 61 20 62 75 66 66 65 72 | 20 69 6e 20 69 6d 70 61 |a buffer| in impa|
|00001760| 64 2e 0d 20 20 78 6c 6f | 63 6b 2e 63 0d 20 20 20 |d.. xlo|ck.c. |
|00001770| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 4f 6e 20 | | On |
|00001780| 4c 69 6e 75 78 20 73 79 | 73 74 65 6d 73 2c 20 74 |Linux sy|stems, t|
|00001790| 68 69 73 20 77 69 6c 6c | 20 6f 76 65 72 77 72 69 |his will| overwri|
|000017a0| 74 65 20 61 20 62 75 66 | 66 65 72 20 69 6e 20 73 |te a buf|fer in s|
|000017b0| 65 74 75 69 64 20 78 6c | 6f 63 6b 2c 20 67 69 76 |etuid xl|ock, giv|
|000017c0| 69 6e 67 20 72 6f 6f 74 | 20 61 63 63 65 73 73 2e |ing root| access.|
|000017d0| 0d 20 20 70 68 6f 62 69 | 61 2e 74 67 7a 0d 20 20 |. phobi|a.tgz. |
|000017e0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|000017f0| 69 73 20 75 74 69 6c 69 | 74 79 20 64 6f 65 73 20 |is utili|ty does |
|00001800| 61 20 73 63 61 6e 20 6f | 66 20 61 6e 20 69 6e 74 |a scan o|f an int|
|00001810| 65 72 6e 65 74 20 68 6f | 73 74 20 6c 6f 6f 6b 69 |ernet ho|st looki|
|00001820| 6e 67 20 66 6f 72 20 76 | 61 72 69 6f 75 73 20 76 |ng for v|arious v|
|00001830| 75 6c 6e 65 72 61 62 69 | 6c 69 74 69 65 73 2e 0d |ulnerabi|lities..|
|00001840| 20 20 65 6c 6d 5f 65 78 | 70 6c 6f 69 74 2e 63 0d | elm_ex|ploit.c.|
|00001850| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00001860| 4f 76 65 72 77 72 69 74 | 65 73 20 61 20 62 75 66 |Overwrit|es a buf|
|00001870| 66 65 72 20 69 6e 20 45 | 6c 6d 20 61 6e 64 20 45 |fer in E|lm and E|
|00001880| 6c 6d 2d 4d 45 2b 20 6f | 6e 20 4c 69 6e 75 78 20 |lm-ME+ o|n Linux |
|00001890| 76 69 61 20 54 45 52 4d | 20 65 6e 76 69 72 6f 6e |via TERM| environ|
|000018a0| 2e 20 76 61 72 69 61 62 | 6c 65 2e 0d 20 20 64 61 |. variab|le.. da|
|000018b0| 79 6e 6f 74 69 66 79 2e | 73 68 0d 20 20 20 20 20 |ynotify.|sh. |
|000018c0| 20 20 20 20 20 20 20 20 | 20 20 20 54 68 69 73 20 | | This |
|000018d0| 73 63 72 69 70 74 20 77 | 69 6c 6c 20 65 78 70 6c |script w|ill expl|
|000018e0| 6f 69 74 20 61 20 62 75 | 67 20 69 6e 20 53 47 49 |oit a bu|g in SGI|
|000018f0| 27 73 20 52 65 67 69 73 | 74 72 61 74 69 6f 6e 20 |'s Regis|tration |
|00001900| 53 6f 66 74 77 61 72 65 | 20 75 6e 64 65 72 20 49 |Software| under I|
|00001910| 52 49 58 20 36 2e 32 2e | 0d 20 20 62 72 75 74 65 |RIX 6.2.|. brute|
|00001920| 5f 77 65 62 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |_web.c. | |
|00001930| 20 20 20 20 20 20 20 54 | 68 69 73 20 70 72 6f 67 | T|his prog|
|00001940| 72 61 6d 20 77 69 6c 6c | 20 62 72 75 74 65 20 66 |ram will| brute f|
|00001950| 6f 72 63 65 20 69 74 27 | 73 20 77 61 79 20 69 6e |orce it'|s way in|
|00001960| 74 6f 20 61 20 77 65 62 | 20 73 65 72 76 65 72 20 |to a web| server |
|00001970| 67 69 76 69 6e 67 20 61 | 20 75 73 65 72 20 61 6e |giving a| user an|
|00001980| 64 20 70 61 73 73 77 64 | 2e 0d 20 20 74 63 70 64 |d passwd|.. tcpd|
|00001990| 75 6d 70 2e 74 61 72 2e | 5a 0d 20 20 20 20 20 20 |ump.tar.|Z. |
|000019a0| 20 20 20 20 20 20 20 20 | 20 20 41 20 74 6f 6f 6c | | A tool|
|000019b0| 20 66 6f 72 20 6e 65 74 | 77 6f 72 6b 20 6d 6f 6e | for net|work mon|
|000019c0| 69 74 6f 72 69 6e 67 20 | 61 6e 64 20 64 61 74 61 |itoring |and data|
|000019d0| 20 61 63 71 75 69 73 69 | 74 69 6f 6e 2e 20 28 6e | acquisi|tion. (n|
|000019e0| 65 65 64 73 20 6c 69 62 | 72 61 72 79 20 70 61 63 |eeds lib|rary pac|
|000019f0| 6b 65 74 20 63 61 70 74 | 75 72 65 2e 29 0d 20 20 |ket capt|ure.). |
|00001a00| 77 69 6e 6e 75 6b 65 2e | 63 0d 20 20 20 20 20 20 |winnuke.|c. |
|00001a10| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 73 | | This s|
|00001a20| 65 6e 64 73 20 4f 75 74 | 20 6f 66 20 42 61 6e 64 |ends Out| of Band|
|00001a30| 20 44 61 74 61 20 74 6f | 20 57 69 6e 39 35 2f 4e | Data to| Win95/N|
|00001a40| 54 20 63 6f 6d 70 75 74 | 65 72 73 20 63 61 75 73 |T comput|ers caus|
|00001a50| 69 6e 67 20 70 61 6e 69 | 63 73 20 61 6e 64 20 72 |ing pani|cs and r|
|00001a60| 65 62 6f 6f 74 73 2e 0d | 20 20 73 70 65 72 6c 2e |eboots..| sperl.|
|00001a70| 74 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |tgz. | |
|00001a80| 20 20 20 20 4f 76 65 72 | 77 72 69 74 65 73 20 61 | Over|writes a|
|00001a90| 20 62 75 66 66 65 72 20 | 69 6e 20 74 68 65 20 73 | buffer |in the s|
|00001aa0| 70 65 72 6c 35 2e 30 30 | 31 20 61 6e 64 20 73 70 |perl5.00|1 and sp|
|00001ab0| 65 72 6c 35 2e 30 30 33 | 2c 20 74 68 75 73 20 67 |erl5.003|, thus g|
|00001ac0| 69 76 69 6e 67 20 72 6f | 6f 74 20 61 63 63 65 73 |iving ro|ot acces|
|00001ad0| 73 2e 0d 20 20 64 69 70 | 2d 70 72 6f 62 2e 74 78 |s.. dip|-prob.tx|
|00001ae0| 74 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |t. | |
|00001af0| 20 20 44 69 70 20 77 69 | 6c 6c 20 61 6c 6c 6f 77 | Dip wi|ll allow|
|00001b00| 20 61 6e 20 6f 72 64 69 | 6e 61 72 79 20 75 73 65 | an ordi|nary use|
|00001b10| 72 20 74 6f 20 67 61 69 | 6e 20 63 6f 6e 74 72 6f |r to gai|n contro|
|00001b20| 6c 20 6f 66 20 61 72 62 | 69 74 72 61 72 79 20 64 |l of arb|itrary d|
|00001b30| 65 76 69 63 65 73 20 69 | 6e 20 2f 64 65 76 2e 0d |evices i|n /dev..|
|00001b40| 20 20 6e 6c 73 70 61 74 | 68 2e 74 78 74 0d 20 20 | nlspat|h.txt. |
|00001b50| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 45 78 | | Ex|
|00001b60| 70 6c 6f 69 74 73 20 66 | 6f 72 20 70 69 6e 67 2c |ploits f|or ping,|
|00001b70| 20 6d 69 6e 69 63 6f 6d | 2c 20 73 75 20 61 6e 64 | minicom|, su and|
|00001b80| 20 6f 74 68 65 72 73 20 | 6f 6e 20 4c 69 6e 75 78 | others |on Linux|
|00001b90| 20 76 69 61 20 4e 4c 53 | 50 41 54 48 20 65 6e 76 | via NLS|PATH env|
|00001ba0| 2e 20 76 61 72 69 61 62 | 6c 65 2e 0d 20 20 66 64 |. variab|le.. fd|
|00001bb0| 66 6f 72 6d 61 74 2d 65 | 78 2e 63 0d 20 20 20 20 |format-e|x.c. |
|00001bc0| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|00001bd0| 20 77 69 6c 6c 20 6f 76 | 65 72 77 72 69 74 65 20 | will ov|erwrite |
|00001be0| 61 20 62 75 66 66 65 72 | 20 69 6e 20 2f 75 73 72 |a buffer| in /usr|
|00001bf0| 2f 62 69 6e 2f 66 64 66 | 6f 72 6d 61 74 20 6f 6e |/bin/fdf|ormat on|
|00001c00| 20 53 6f 6c 61 72 69 73 | 20 32 2e 78 20 73 79 73 | Solaris| 2.x sys|
|00001c10| 74 65 6d 73 20 67 69 76 | 69 6e 67 20 72 6f 6f 74 |tems giv|ing root|
|00001c20| 2e 0d 20 20 73 75 6e 6f | 73 2d 6f 76 66 2e 74 61 |.. suno|s-ovf.ta|
|00001c30| 72 2e 67 7a 0d 20 20 20 | 20 20 20 20 20 20 20 20 |r.gz. | |
|00001c40| 20 20 20 20 20 54 68 69 | 73 20 70 72 6f 67 72 61 | Thi|s progra|
|00001c50| 6d 20 69 73 20 64 65 73 | 69 67 6e 65 64 20 74 6f |m is des|igned to|
|00001c60| 20 74 65 73 74 20 62 75 | 66 66 65 72 20 6f 76 65 | test bu|ffer ove|
|00001c70| 72 66 6c 6f 77 73 20 6f | 6e 20 53 75 6e 4f 53 20 |rflows o|n SunOS |
|00001c80| 34 2e 31 2e 78 20 62 6f | 78 65 73 2e 0d 20 20 63 |4.1.x bo|xes.. c|
|00001c90| 78 74 65 72 6d 2e 63 0d | 20 20 20 20 20 20 20 20 |xterm.c.| |
|00001ca0| 20 20 20 20 20 20 20 20 | 54 68 69 73 20 6f 76 65 | |This ove|
|00001cb0| 72 77 72 69 74 65 73 20 | 61 20 62 75 66 66 65 72 |rwrites |a buffer|
|00001cc0| 20 69 6e 20 43 68 69 6e | 65 73 65 20 78 74 65 72 | in Chin|ese xter|
|00001cd0| 6d 20 4c 69 6e 75 78 20 | 73 79 73 74 65 6d 73 2c |m Linux |systems,|
|00001ce0| 20 74 68 75 73 20 67 69 | 76 69 6e 67 20 72 6f 6f | thus gi|ving roo|
|00001cf0| 74 20 61 63 63 65 73 73 | 2e 0d 20 20 63 6f 6c 6f |t access|.. colo|
|00001d00| 72 5f 78 74 65 72 6d 2e | 63 0d 20 20 20 20 20 20 |r_xterm.|c. |
|00001d10| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 77 | | This w|
|00001d20| 69 6c 6c 20 6f 76 65 72 | 77 72 69 74 65 20 61 20 |ill over|write a |
|00001d30| 62 75 66 66 65 72 20 69 | 6e 20 2f 75 73 72 2f 58 |buffer i|n /usr/X|
|00001d40| 31 31 2f 62 69 6e 2f 63 | 6f 6c 6f 72 5f 78 74 65 |11/bin/c|olor_xte|
|00001d50| 72 6d 2c 20 67 69 76 69 | 6e 67 20 72 6f 6f 74 20 |rm, givi|ng root |
|00001d60| 6f 6e 20 4c 69 6e 75 78 | 2e 0d 20 20 70 65 70 73 |on Linux|.. peps|
|00001d70| 69 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |i.c. | |
|00001d80| 20 20 20 20 54 68 69 73 | 20 70 72 6f 67 72 61 6d | This| program|
|00001d90| 20 69 73 20 61 20 72 61 | 6e 64 6f 6d 20 73 6f 75 | is a ra|ndom sou|
|00001da0| 72 63 65 20 68 6f 73 74 | 20 55 44 50 20 66 6c 6f |rce host| UDP flo|
|00001db0| 6f 64 65 72 20 74 68 61 | 74 20 63 6f 6d 70 69 6c |oder tha|t compil|
|00001dc0| 65 73 20 75 6e 64 65 72 | 20 4c 69 6e 75 78 2e 0d |es under| Linux..|
|00001dd0| 20 20 74 6c 6e 74 68 69 | 64 65 2e 63 0d 20 20 20 | tlnthi|de.c. |
|00001de0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 41 6c 6c | | All|
|00001df0| 6f 63 61 74 65 73 20 61 | 20 70 6f 72 74 20 61 6e |ocates a| port an|
|00001e00| 64 20 73 65 74 73 20 75 | 70 20 61 20 74 65 6c 6e |d sets u|p a teln|
|00001e10| 65 74 20 67 61 74 65 77 | 61 79 20 6d 61 6b 69 6e |et gatew|ay makin|
|00001e20| 67 20 69 74 20 64 69 66 | 66 69 63 75 6c 74 20 74 |g it dif|ficult t|
|00001e30| 6f 20 74 72 61 63 65 20 | 74 65 6c 6e 65 74 73 2e |o trace |telnets.|
|00001e40| 0d 20 20 6a 70 69 6e 67 | 2e 74 61 72 2e 67 7a 0d |. jping|.tar.gz.|
|00001e50| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00001e60| 54 68 69 73 20 69 73 20 | 61 6e 6f 74 68 65 72 20 |This is |another |
|00001e70| 73 69 6d 70 6c 65 20 49 | 4d 43 50 20 66 6c 6f 6f |simple I|MCP floo|
|00001e80| 64 69 6e 67 20 70 72 6f | 67 72 61 6d 20 74 68 61 |ding pro|gram tha|
|00001e90| 74 20 63 6f 6d 70 69 6c | 65 73 20 75 6e 64 65 72 |t compil|es under|
|00001ea0| 20 4c 69 6e 75 78 2e 0d | 20 20 4c 50 52 6e 67 2e | Linux..| LPRng.|
|00001eb0| 74 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |tgz. | |
|00001ec0| 20 20 20 20 41 20 6c 69 | 67 68 74 20 77 65 69 67 | A li|ght weig|
|00001ed0| 68 74 20 70 72 69 6e 74 | 69 6e 67 20 73 79 73 74 |ht print|ing syst|
|00001ee0| 65 6d 20 65 73 70 65 63 | 69 61 6c 6c 79 20 64 65 |em espec|ially de|
|00001ef0| 73 69 67 6e 65 64 20 77 | 69 74 68 20 73 65 63 75 |signed w|ith secu|
|00001f00| 72 69 74 79 20 69 6e 20 | 6d 69 6e 64 2e 0d 20 20 |rity in |mind.. |
|00001f10| 6a 6f 6c 74 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |jolt.c. | |
|00001f20| 20 20 20 20 20 20 20 53 | 65 6e 64 73 20 6f 76 65 | S|ends ove|
|00001f30| 72 73 69 7a 65 64 20 66 | 72 61 67 6d 65 6e 74 65 |rsized f|ragmente|
|00001f40| 64 20 70 61 63 6b 65 74 | 73 20 74 6f 20 57 69 6e |d packet|s to Win|
|00001f50| 39 35 20 62 6f 78 65 73 | 20 63 61 75 73 69 6e 67 |95 boxes| causing|
|00001f60| 20 74 68 65 6d 20 74 6f | 20 6c 6f 63 6b 20 75 70 | them to| lock up|
|00001f70| 2e 0d 20 20 75 74 63 6c | 65 61 6e 2e 63 0d 20 20 |.. utcl|ean.c. |
|00001f80| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00001f90| 69 73 20 77 69 6c 6c 20 | 72 65 6d 6f 76 65 20 79 |is will |remove y|
|00001fa0| 6f 75 72 20 70 72 65 73 | 65 6e 63 65 20 66 72 6f |our pres|ence fro|
|00001fb0| 6d 20 77 74 6d 70 2c 20 | 77 74 6d 70 78 2c 20 75 |m wtmp, |wtmpx, u|
|00001fc0| 74 6d 70 2c 20 75 74 6d | 70 78 2c 20 61 6e 64 20 |tmp, utm|px, and |
|00001fd0| 6c 61 73 74 6c 6f 67 2e | 0d 20 20 65 6a 65 63 74 |lastlog.|. eject|
|00001fe0| 2e 63 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.c. | |
|00001ff0| 20 20 20 4f 76 65 72 77 | 72 69 74 65 73 20 61 20 | Overw|rites a |
|00002000| 62 75 66 66 65 72 20 6f | 6e 20 53 6f 6c 61 72 69 |buffer o|n Solari|
|00002010| 73 20 32 2e 78 20 73 79 | 73 74 65 6d 73 20 69 6e |s 2.x sy|stems in|
|00002020| 20 2f 75 73 72 2f 62 69 | 6e 2f 65 6a 65 63 74 2c | /usr/bi|n/eject,|
|00002030| 20 67 69 76 69 6e 67 20 | 61 20 72 6f 6f 74 20 73 | giving |a root s|
|00002040| 68 65 6c 6c 2e 0d 20 20 | 62 69 6e 64 2d 38 2e 31 |hell.. |bind-8.1|
|00002050| 2e 31 2e 74 67 7a 0d 20 | 20 20 20 20 20 20 20 20 |.1.tgz. | |
|00002060| 20 20 20 20 20 20 20 56 | 65 72 73 69 6f 6e 20 38 | V|ersion 8|
|00002070| 2e 31 2e 31 20 6f 66 20 | 62 69 6e 64 20 77 69 74 |.1.1 of |bind wit|
|00002080| 68 20 6d 61 6e 79 20 69 | 6d 70 72 6f 76 65 6d 65 |h many i|mproveme|
|00002090| 6e 74 73 20 2d 20 28 69 | 6e 63 6c 75 64 65 73 20 |nts - (i|ncludes |
|000020a0| 64 6f 63 75 6d 65 6e 74 | 61 74 69 6f 6e 29 2e 0d |document|ation)..|
|000020b0| 20 20 70 75 6b 65 2e 63 | 0d 20 20 20 20 20 20 20 | puke.c|. |
|000020c0| 20 20 20 20 20 20 20 20 | 20 53 70 6f 6f 66 73 20 | | Spoofs |
|000020d0| 61 6e 20 49 43 4d 50 20 | 75 6e 72 65 61 63 68 61 |an ICMP |unreacha|
|000020e0| 62 6c 65 20 65 72 72 6f | 72 20 74 6f 20 61 20 74 |ble erro|r to a t|
|000020f0| 61 72 67 65 74 2c 20 63 | 61 75 73 69 6e 67 20 63 |arget, c|ausing c|
|00002100| 6f 6e 6e 65 63 74 69 6f | 6e 20 64 72 6f 70 73 2e |onnectio|n drops.|
|00002110| 0d 20 20 77 65 62 73 30 | 39 39 2e 74 67 7a 0d 20 |. webs0|99.tgz. |
|00002120| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 41 | | A|
|00002130| 20 6d 69 6e 69 6d 61 6c | 69 73 74 20 77 65 62 20 | minimal|ist web |
|00002140| 73 65 72 76 65 72 20 64 | 65 73 69 67 6e 65 64 20 |server d|esigned |
|00002150| 70 72 69 6d 61 72 69 6c | 79 20 66 6f 72 20 73 65 |primaril|y for se|
|00002160| 63 75 72 69 74 79 20 61 | 6e 64 20 68 61 6e 64 6c |curity a|nd handl|
|00002170| 65 73 20 72 65 64 69 72 | 65 63 74 73 2e 0d 20 20 |es redir|ects.. |
|00002180| 74 61 6c 6b 64 2e 74 78 | 74 0d 20 20 20 20 20 20 |talkd.tx|t. |
|00002190| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 65 | | This e|
|000021a0| 78 70 6c 61 69 6e 73 20 | 68 6f 77 20 74 6f 20 67 |xplains |how to g|
|000021b0| 65 74 20 72 6f 6f 74 20 | 72 65 6d 6f 74 65 6c 79 |et root |remotely|
|000021c0| 20 62 79 20 6f 76 65 72 | 77 72 69 74 69 6e 67 20 | by over|writing |
|000021d0| 61 20 62 75 66 66 65 72 | 20 69 6e 20 69 6e 2e 74 |a buffer| in in.t|
|000021e0| 61 6c 6b 64 2e 0d 20 20 | 75 64 70 73 74 6f 72 6d |alkd.. |udpstorm|
|000021f0| 2e 74 67 7a 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.tgz. | |
|00002200| 20 20 20 20 20 54 68 69 | 73 20 69 73 20 61 6e 20 | Thi|s is an |
|00002210| 69 6d 70 6c 65 6e 6d 65 | 6e 74 61 74 69 6f 6e 20 |implenme|ntation |
|00002220| 6f 66 20 74 68 65 20 75 | 64 70 73 74 6f 72 6d 20 |of the u|dpstorm |
|00002230| 61 74 74 61 63 6b 2e 20 | 57 6f 72 6b 73 20 77 69 |attack. |Works wi|
|00002240| 74 68 20 4c 69 6e 75 78 | 2e 0d 20 20 6a 61 6b 61 |th Linux|.. jaka|
|00002250| 6c 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |l.c. | |
|00002260| 20 20 20 20 41 20 70 6f | 72 74 73 63 61 6e 6e 65 | A po|rtscanne|
|00002270| 72 20 74 68 61 74 20 61 | 76 6f 69 64 73 20 74 63 |r that a|voids tc|
|00002280| 70 2d 6c 6f 67 67 69 6e | 67 20 62 79 20 6e 6f 74 |p-loggin|g by not|
|00002290| 20 63 6f 6d 70 6c 65 74 | 69 6e 67 20 74 68 65 20 | complet|ing the |
|000022a0| 33 2d 77 61 79 20 54 43 | 50 20 68 61 6e 64 73 68 |3-way TC|P handsh|
|000022b0| 61 6b 65 2e 0d 20 20 6c | 69 6e 5f 70 72 6f 62 65 |ake.. l|in_probe|
|000022c0| 2e 63 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.c. | |
|000022d0| 20 20 20 54 68 69 73 20 | 6f 76 65 72 77 72 69 74 | This |overwrit|
|000022e0| 65 73 20 61 20 62 75 66 | 66 65 72 20 69 6e 20 2f |es a buf|fer in /|
|000022f0| 75 73 72 2f 58 31 31 2f | 62 69 6e 2f 53 75 70 65 |usr/X11/|bin/Supe|
|00002300| 72 50 72 6f 62 65 20 6f | 6e 20 4c 69 6e 75 78 2c |rProbe o|n Linux,|
|00002310| 20 74 68 75 73 20 67 69 | 76 69 6e 67 20 72 6f 6f | thus gi|ving roo|
|00002320| 74 2e 0d 20 20 41 49 58 | 5f 68 6f 73 74 2e 63 0d |t.. AIX|_host.c.|
|00002330| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00002340| 4f 76 65 72 77 72 69 74 | 65 73 20 61 20 62 75 66 |Overwrit|es a buf|
|00002350| 66 65 72 20 69 6e 20 67 | 65 74 68 6f 73 74 62 79 |fer in g|ethostby|
|00002360| 6e 61 6d 65 28 29 20 6f | 6e 20 41 49 58 20 34 2e |name() o|n AIX 4.|
|00002370| 32 20 50 6f 77 65 72 20 | 50 43 2c 20 67 69 76 69 |2 Power |PC, givi|
|00002380| 6e 67 20 61 20 72 6f 6f | 74 20 73 68 65 6c 6c 2e |ng a roo|t shell.|
|00002390| 0d 20 20 73 67 69 5f 73 | 79 73 74 6f 75 72 2e 74 |. sgi_s|ystour.t|
|000023a0| 78 74 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |xt. | |
|000023b0| 20 20 20 45 78 70 6c 6f | 69 74 20 66 6f 72 20 2f | Explo|it for /|
|000023c0| 75 73 72 2f 6c 69 62 2f | 74 6f 75 72 2f 62 69 6e |usr/lib/|tour/bin|
|000023d0| 2f 52 65 6d 6f 76 65 53 | 79 73 74 65 6d 54 6f 75 |/RemoveS|ystemTou|
|000023e0| 72 20 6f 6e 20 49 52 49 | 58 20 35 2e 33 20 26 20 |r on IRI|X 5.3 & |
|000023f0| 36 2e 32 20 74 68 61 74 | 20 67 69 76 65 73 20 72 |6.2 that| gives r|
|00002400| 6f 6f 74 2e 0d 20 20 63 | 6f 6e 6e 65 63 74 2e 63 |oot.. c|onnect.c|
|00002410| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00002420| 20 4c 65 74 73 20 61 20 | 6e 6f 72 6d 61 6c 20 75 | Lets a |normal u|
|00002430| 73 65 72 20 63 72 61 73 | 68 20 41 49 58 20 34 2e |ser cras|h AIX 4.|
|00002440| 31 2e 34 2c 20 41 49 58 | 20 34 2e 31 2e 35 2c 20 |1.4, AIX| 4.1.5, |
|00002450| 48 50 2d 55 58 20 31 30 | 2e 30 31 2c 20 61 6e 64 |HP-UX 10|.01, and|
|00002460| 20 48 50 2d 55 58 20 39 | 2e 30 35 0d 20 20 73 6f | HP-UX 9|.05. so|
|00002470| 6c 32 2e 35 5f 6e 69 73 | 2e 74 78 74 0d 20 20 20 |l2.5_nis|.txt. |
|00002480| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 54 68 69 | | Thi|
|00002490| 73 20 73 68 6f 77 20 68 | 6f 77 20 74 6f 20 65 78 |s show h|ow to ex|
|000024a0| 70 6c 6f 69 74 20 2f 75 | 73 72 2f 6c 69 62 2f 6e |ploit /u|sr/lib/n|
|000024b0| 69 73 2f 6e 69 73 70 6f | 70 75 6c 61 74 65 20 6f |is/nispo|pulate o|
|000024c0| 6e 20 53 6f 6c 61 72 69 | 73 20 32 2e 35 20 73 79 |n Solari|s 2.5 sy|
|000024d0| 73 74 65 6d 73 2e 0d 20 | 20 78 64 6d 5f 62 75 67 |stems.. | xdm_bug|
|000024e0| 73 2e 74 78 74 0d 20 20 | 20 20 20 20 20 20 20 20 |s.txt. | |
|000024f0| 20 20 20 20 20 20 49 74 | 20 69 73 20 70 6f 73 73 | It| is poss|
|00002500| 69 62 6c 65 20 74 6f 20 | 64 65 6e 79 20 73 65 72 |ible to |deny ser|
|00002510| 76 69 63 65 20 66 72 6f | 6d 20 78 64 6d 20 61 6e |vice fro|m xdm an|
|00002520| 64 20 78 64 6d 20 64 6f | 65 73 20 6e 6f 74 20 63 |d xdm do|es not c|
|00002530| 6c 6f 73 65 20 66 69 6c | 65 20 68 61 6e 64 6c 65 |lose fil|e handle|
|00002540| 73 20 63 6f 72 72 65 63 | 74 6c 79 2e 0d 20 20 6c |s correc|tly.. l|
|00002550| 69 6c 6f 2d 65 78 70 6c | 6f 69 74 2e 74 78 74 0d |ilo-expl|oit.txt.|
|00002560| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00002570| 47 65 74 20 72 6f 6f 74 | 20 6f 6e 20 74 68 65 20 |Get root| on the |
|00002580| 6c 61 73 74 65 73 74 20 | 76 65 72 73 69 6f 6e 73 |lastest |versions|
|00002590| 20 6f 66 20 4c 69 6e 75 | 78 20 28 61 74 20 74 68 | of Linu|x (at th|
|000025a0| 65 20 63 6f 6e 73 6f 6c | 65 29 20 75 73 69 6e 67 |e consol|e) using|
|000025b0| 20 4c 44 5f 50 52 45 4c | 4f 41 44 2e 0d 20 20 72 | LD_PREL|OAD.. r|
|000025c0| 73 75 63 6b 65 72 2e 70 | 6c 0d 20 20 20 20 20 20 |sucker.p|l. |
|000025d0| 20 20 20 20 20 20 20 20 | 20 20 50 65 72 6c 20 73 | | Perl s|
|000025e0| 63 72 69 70 74 20 74 68 | 61 74 20 61 63 74 73 20 |cript th|at acts |
|000025f0| 61 73 20 61 20 66 61 6b | 65 20 72 2a 20 64 61 65 |as a fak|e r* dae|
|00002600| 6d 6f 6e 20 61 6e 64 20 | 6c 6f 67 73 20 74 68 65 |mon and |logs the|
|00002610| 20 75 73 65 72 6e 61 6d | 65 73 20 73 65 6e 74 20 | usernam|es sent |
|00002620| 66 72 6f 6d 20 63 6c 69 | 65 6e 74 73 2e 0d 20 20 |from cli|ents.. |
|00002630| 73 79 6e 6b 34 2e 63 0d | 20 20 20 20 20 20 20 20 |synk4.c.| |
|00002640| 20 20 20 20 20 20 20 20 | 41 6e 20 69 6d 70 72 6f | |An impro|
|00002650| 76 65 64 20 61 6e 64 20 | 75 70 64 61 74 65 64 20 |ved and |updated |
|00002660| 53 79 6e 20 46 6c 6f 6f | 64 65 72 20 74 68 61 74 |Syn Floo|der that|
|00002670| 20 61 6c 73 6f 20 73 75 | 70 70 6f 72 74 73 20 61 | also su|pports a|
|00002680| 20 72 61 6e 64 6f 6d 20 | 49 50 20 73 70 6f 6f 66 | random |IP spoof|
|00002690| 69 6e 67 20 6d 6f 64 65 | 2e 0d 20 20 70 6f 72 74 |ing mode|.. port|
|000026a0| 6d 61 70 5f 35 62 2e 74 | 61 72 2e 67 7a 0d 20 20 |map_5b.t|ar.gz. |
|000026b0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 41 20 | | A |
|000026c0| 70 6f 72 74 6d 61 70 70 | 65 72 20 74 68 61 74 20 |portmapp|er that |
|000026d0| 73 75 70 70 6f 72 74 73 | 20 61 63 63 65 73 73 20 |supports| access |
|000026e0| 63 6f 6e 74 72 6f 6c 20 | 69 6e 20 74 68 65 20 73 |control |in the s|
|000026f0| 74 79 6c 65 20 6f 66 20 | 74 68 65 20 74 63 70 20 |tyle of |the tcp |
|00002700| 77 72 61 70 70 65 72 20 | 70 61 63 6b 61 67 65 2e |wrapper |package.|
|00002710| 0d 20 20 69 65 62 75 67 | 73 2e 74 61 72 2e 67 7a |. iebug|s.tar.gz|
|00002720| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00002730| 20 4d 69 63 72 6f 73 6f | 66 74 20 49 6e 74 65 72 | Microso|ft Inter|
|00002740| 6e 65 74 20 45 78 70 6c | 6f 72 65 72 20 62 75 67 |net Expl|orer bug|
|00002750| 73 20 6f 6e 65 20 74 68 | 72 6f 75 67 68 20 73 69 |s one th|rough si|
|00002760| 78 20 69 6e 20 74 65 78 | 74 20 61 6e 64 20 68 74 |x in tex|t and ht|
|00002770| 6d 6c 20 66 6f 72 6d 61 | 74 2e 0d 20 20 61 72 6e |ml forma|t.. arn|
|00002780| 75 64 70 2e 63 0d 20 20 | 20 20 20 20 20 20 20 20 |udp.c. | |
|00002790| 20 20 20 20 20 20 44 65 | 6d 6f 6e 73 74 72 61 74 | De|monstrat|
|000027a0| 65 73 20 68 6f 77 20 74 | 6f 20 73 65 6e 64 20 73 |es how t|o send s|
|000027b0| 69 6e 67 6c 65 20 55 44 | 50 20 70 61 63 6b 65 74 |ingle UD|P packet|
|000027c0| 73 20 66 72 6f 6d 20 61 | 6e 20 61 72 62 69 74 72 |s from a|n arbitr|
|000027d0| 61 79 20 73 6f 75 63 65 | 2f 64 65 73 74 69 6e 61 |ay souce|/destina|
|000027e0| 74 69 6f 6e 2e 0d 20 20 | 73 75 6e 2d 72 65 62 6f |tion.. |sun-rebo|
|000027f0| 6f 74 2e 74 78 74 0d 20 | 20 20 20 20 20 20 20 20 |ot.txt. | |
|00002800| 20 20 20 20 20 20 20 42 | 79 20 74 79 70 69 6e 67 | B|y typing|
|00002810| 3a 20 70 65 72 6c 20 2d | 65 20 27 70 72 69 6e 74 |: perl -|e 'print|
|00002820| 20 22 5c 65 5b 31 4a 22 | 27 20 79 6f 75 20 63 61 | "\e[1J"|' you ca|
|00002830| 6e 20 72 65 62 6f 6f 74 | 20 61 20 73 75 6e 20 75 |n reboot| a sun u|
|00002840| 6c 74 72 61 20 73 70 61 | 72 63 20 61 74 20 74 68 |ltra spa|rc at th|
|00002850| 65 20 63 6f 6e 73 6f 6c | 65 2e 0d 20 20 63 67 69 |e consol|e.. cgi|
|00002860| 77 72 61 70 2d 33 2e 32 | 32 2e 74 67 7a 0d 20 20 |wrap-3.2|2.tgz. |
|00002870| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00002880| 69 73 20 69 73 20 61 20 | 67 61 74 65 77 61 79 20 |is is a |gateway |
|00002890| 74 68 61 74 20 61 6c 6c | 6f 77 73 20 61 20 6d 6f |that all|ows a mo|
|000028a0| 72 65 20 73 65 63 75 72 | 65 20 75 73 65 72 20 61 |re secur|e user a|
|000028b0| 63 63 65 73 73 20 74 6f | 20 43 47 49 20 70 72 6f |ccess to| CGI pro|
|000028c0| 67 72 61 6d 73 2e 0d 20 | 20 70 6d 61 2e 74 61 72 |grams.. | pma.tar|
|000028d0| 2e 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.gz. | |
|000028e0| 20 20 20 20 50 6f 6f 72 | 20 4d 61 6e 27 73 20 41 | Poor| Man's A|
|000028f0| 63 63 65 73 73 20 2d 20 | 41 20 64 61 65 6d 6f 6e |ccess - |A daemon|
|00002900| 20 74 68 61 74 20 6c 65 | 74 73 20 79 6f 75 20 69 | that le|ts you i|
|00002910| 73 73 75 65 20 73 68 65 | 6c 6c 20 63 6f 6d 6d 61 |ssue she|ll comma|
|00002920| 6e 64 73 20 72 65 6d 6f | 74 65 6c 79 2e 0d 20 20 |nds remo|tely.. |
|00002930| 6d 61 6b 65 64 69 72 2e | 74 78 74 0d 20 20 20 20 |makedir.|txt. |
|00002940| 20 20 20 20 20 20 20 20 | 20 20 20 20 50 72 6f 67 | | Prog|
|00002950| 72 61 6d 73 20 74 6f 20 | 63 72 65 61 74 65 20 74 |rams to |create t|
|00002960| 68 6f 75 73 61 6e 64 73 | 20 6f 66 20 64 69 72 65 |housands| of dire|
|00002970| 63 74 6f 72 69 65 73 20 | 61 6e 64 20 74 6f 20 64 |ctories |and to d|
|00002980| 65 6c 65 74 65 20 74 68 | 65 73 65 20 64 69 72 65 |elete th|ese dire|
|00002990| 63 74 6f 72 69 65 73 2e | 0d 20 20 74 63 70 70 72 |ctories.|. tcppr|
|000029a0| 6f 62 65 2e 63 0d 20 20 | 20 20 20 20 20 20 20 20 |obe.c. | |
|000029b0| 20 20 20 20 20 20 54 68 | 69 73 20 69 73 20 61 20 | Th|is is a |
|000029c0| 74 63 70 20 70 6f 72 74 | 73 63 61 6e 6e 65 72 20 |tcp port|scanner |
|000029d0| 74 68 61 74 20 73 68 6f | 77 73 20 61 63 63 65 70 |that sho|ws accep|
|000029e0| 74 65 64 20 63 6f 6e 6e | 65 63 74 69 6f 6e 73 20 |ted conn|ections |
|000029f0| 6f 6e 20 61 20 72 65 6d | 6f 74 65 20 68 6f 73 74 |on a rem|ote host|
|00002a00| 2e 0d 20 20 6c 6f 63 6b | 74 63 70 2e 63 0d 20 20 |.. lock|tcp.c. |
|00002a10| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00002a20| 69 73 20 70 72 6f 67 72 | 61 6d 20 77 69 6c 6c 20 |is progr|am will |
|00002a30| 66 72 65 65 7a 65 20 61 | 20 53 6f 6c 61 72 69 73 |freeze a| Solaris|
|00002a40| 2f 78 38 36 20 32 2e 35 | 2e 31 20 73 79 73 74 65 |/x86 2.5|.1 syste|
|00002a50| 6d 73 2c 20 63 61 75 73 | 69 6e 67 20 64 65 6e 69 |ms, caus|ing deni|
|00002a60| 61 6c 20 6f 66 20 73 65 | 72 76 69 63 65 2e 0d 20 |al of se|rvice.. |
|00002a70| 20 62 6c 6f 63 6b 2e 63 | 0d 20 20 20 20 20 20 20 | block.c|. |
|00002a80| 20 20 20 20 20 20 20 20 | 20 50 72 65 76 65 6e 74 | | Prevent|
|00002a90| 73 20 75 73 65 72 73 20 | 66 72 6f 6d 20 6c 6f 67 |s users |from log|
|00002aa0| 67 69 6e 67 20 69 6e 20 | 62 79 20 6d 6f 6e 69 74 |ging in |by monit|
|00002ab0| 6f 72 69 6e 67 20 75 74 | 6d 70 20 61 6e 64 20 63 |oring ut|mp and c|
|00002ac0| 6c 6f 73 69 6e 67 20 64 | 6f 77 6e 20 75 73 65 72 |losing d|own user|
|00002ad0| 27 73 20 74 74 79 20 70 | 6f 72 74 73 2e 0d 20 20 |'s tty p|orts.. |
|00002ae0| 74 69 6e 5f 70 72 6f 62 | 6c 65 6d 2e 74 78 74 0d |tin_prob|lem.txt.|
|00002af0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00002b00| 72 74 69 6e 2f 74 69 6e | 20 77 69 6c 6c 20 63 72 |rtin/tin| will cr|
|00002b10| 65 61 74 65 20 2f 74 6d | 70 2f 2e 74 69 6e 5f 6c |eate /tm|p/.tin_l|
|00002b20| 6f 67 20 77 69 74 68 20 | 6d 6f 64 65 20 6f 66 20 |og with |mode of |
|00002b30| 30 36 36 36 20 69 6e 20 | 2f 74 6d 70 20 61 6e 64 |0666 in |/tmp and|
|00002b40| 20 66 6f 6c 6c 6f 77 73 | 20 73 79 6d 62 6f 6c 69 | follows| symboli|
|00002b50| 63 20 6c 69 6e 6b 73 2e | 0d 20 20 73 75 6e 5f 70 |c links.|. sun_p|
|00002b60| 61 74 63 68 2e 73 68 0d | 20 20 20 20 20 20 20 20 |atch.sh.| |
|00002b70| 20 20 20 20 20 20 20 20 | 49 66 20 79 6f 75 20 68 | |If you h|
|00002b80| 61 76 65 20 61 20 73 75 | 6e 20 53 50 41 52 43 2c |ave a su|n SPARC,|
|00002b90| 20 74 68 69 73 20 73 63 | 72 69 70 74 20 77 69 6c | this sc|ript wil|
|00002ba0| 6c 20 73 74 6f 70 20 61 | 6c 6c 20 66 6f 72 6d 73 |l stop a|ll forms|
|00002bb0| 20 6f 66 20 62 75 66 66 | 65 72 20 6f 76 65 72 72 | of buff|er overr|
|00002bc0| 75 6e 20 61 74 74 61 63 | 6b 73 2e 0d 20 20 72 69 |un attac|ks.. ri|
|00002bd0| 70 75 74 69 6c 73 2e 74 | 67 7a 0d 20 20 20 20 20 |putils.t|gz. |
|00002be0| 20 20 20 20 20 20 20 20 | 20 20 20 54 68 69 73 20 | | This |
|00002bf0| 69 73 20 61 20 73 65 74 | 20 6f 66 20 72 6f 75 74 |is a set| of rout|
|00002c00| 69 6e 67 20 69 6e 74 65 | 72 6e 65 74 20 70 72 6f |ing inte|rnet pro|
|00002c10| 74 6f 63 6f 6c 20 75 74 | 69 6c 69 74 69 65 73 20 |tocol ut|ilities |
|00002c20| 64 65 73 69 67 6e 65 64 | 20 66 6f 72 20 4c 69 6e |designed| for Lin|
|00002c30| 75 78 20 73 79 73 74 65 | 6d 73 2e 0d 20 20 69 70 |ux syste|ms.. ip|
|00002c40| 62 6f 6d 62 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |bomb.c. | |
|00002c50| 20 20 20 20 20 20 20 54 | 68 69 73 20 77 69 6c 6c | T|his will|
|00002c60| 20 61 74 74 61 63 6b 20 | 61 20 74 61 72 67 65 74 | attack |a target|
|00002c70| 20 68 6f 73 74 20 62 79 | 20 73 65 6e 64 69 6e 67 | host by| sending|
|00002c80| 20 76 61 72 69 6f 75 73 | 20 73 69 7a 65 73 20 61 | various| sizes a|
|00002c90| 6e 64 20 6e 75 6d 62 65 | 72 73 20 6f 66 20 49 50 |nd numbe|rs of IP|
|00002ca0| 20 70 61 63 6b 65 74 73 | 2e 0d 20 20 74 65 73 74 | packets|.. test|
|00002cb0| 2d 63 67 69 2e 74 78 74 | 0d 20 20 20 20 20 20 20 |-cgi.txt|. |
|00002cc0| 20 20 20 20 20 20 20 20 | 20 55 73 69 6e 67 20 74 | | Using t|
|00002cd0| 68 65 20 43 47 49 20 70 | 72 6f 67 72 61 6d 20 74 |he CGI p|rogram t|
|00002ce0| 65 73 74 2d 63 67 69 2c | 20 79 6f 75 20 63 61 6e |est-cgi,| you can|
|00002cf0| 20 69 6e 76 65 6e 74 6f | 72 79 20 66 69 6c 65 73 | invento|ry files|
|00002d00| 20 6f 6e 20 72 65 6d 6f | 74 65 20 73 79 73 74 65 | on remo|te syste|
|00002d10| 6d 73 2e 0d 20 20 6c 71 | 75 65 72 79 70 76 2e 74 |ms.. lq|uerypv.t|
|00002d20| 78 74 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |xt. | |
|00002d30| 20 20 20 4f 6e 20 41 49 | 58 20 73 79 73 74 65 6d | On AI|X system|
|00002d40| 73 20 79 6f 75 20 63 61 | 6e 20 72 65 61 64 20 61 |s you ca|n read a|
|00002d50| 6e 79 20 66 69 6c 65 20 | 28 69 6e 20 68 65 78 29 |ny file |(in hex)|
|00002d60| 20 6f 6e 20 74 68 65 20 | 73 79 73 74 65 6d 20 77 | on the |system w|
|00002d70| 69 74 68 20 6c 71 75 65 | 72 79 70 76 2e 0d 20 20 |ith lque|rypv.. |
|00002d80| 43 4f 50 53 0d 20 20 20 | 20 20 20 20 20 20 20 20 |COPS. | |
|00002d90| 20 20 20 20 20 28 43 6f | 6d 70 75 74 65 72 20 4f | (Co|mputer O|
|00002da0| 72 61 63 6c 65 20 26 20 | 50 61 73 73 77 6f 72 64 |racle & |Password|
|00002db0| 20 53 79 73 74 65 6d 29 | 20 63 68 65 63 6b 73 20 | System)| checks |
|00002dc0| 66 6f 72 20 55 6e 69 78 | 20 73 79 73 74 65 6d 20 |for Unix| system |
|00002dd0| 6d 69 73 63 6f 6e 66 69 | 67 75 72 61 74 69 6f 6e |misconfi|guration|
|00002de0| 73 2e 0d 20 20 45 73 6e | 69 66 66 2e 63 0d 20 20 |s.. Esn|iff.c. |
|00002df0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 53 6f | | So|
|00002e00| 75 72 63 65 20 63 6f 64 | 65 20 66 6f 72 20 62 61 |urce cod|e for ba|
|00002e10| 73 69 63 20 65 74 68 65 | 72 6e 65 74 20 53 6e 69 |sic ethe|rnet Sni|
|00002e20| 66 66 65 72 2e 20 28 20 | 53 74 72 61 69 67 68 74 |ffer. ( |Straight|
|00002e30| 20 6f 75 74 20 6f 66 20 | 50 68 72 61 63 6b 20 29 | out of |Phrack )|
|00002e40| 2e 0d 20 20 66 61 6b 65 | 72 77 61 6c 6c 2e 63 0d |.. fake|rwall.c.|
|00002e50| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00002e60| 54 68 69 73 20 70 72 6f | 67 72 61 6d 20 6c 65 74 |This pro|gram let|
|00002e70| 73 20 79 6f 75 20 73 65 | 6e 64 20 61 6e 20 72 77 |s you se|nd an rw|
|00002e80| 61 6c 6c 20 6d 65 73 73 | 61 67 65 20 66 72 6f 6d |all mess|age from|
|00002e90| 20 61 6e 20 61 72 62 69 | 74 72 61 72 79 20 68 6f | an arbi|trary ho|
|00002ea0| 73 74 20 6f 66 20 79 6f | 75 72 20 63 68 6f 69 63 |st of yo|ur choic|
|00002eb0| 65 2e 0d 20 20 66 70 69 | 6e 67 0d 20 20 20 20 20 |e.. fpi|ng. |
|00002ec0| 20 20 20 20 20 20 20 20 | 20 20 20 4c 69 6b 65 20 | | Like |
|00002ed0| 55 4e 49 58 20 70 69 6e | 67 28 31 29 2c 20 62 75 |UNIX pin|g(1), bu|
|00002ee0| 74 20 61 6c 6c 6f 77 73 | 20 65 66 66 69 63 69 65 |t allows| efficie|
|00002ef0| 6e 74 20 70 69 6e 67 69 | 6e 67 20 6f 66 20 61 20 |nt pingi|ng of a |
|00002f00| 6c 61 72 67 65 20 6c 69 | 73 74 20 6f 66 20 68 6f |large li|st of ho|
|00002f10| 73 74 73 2e 0d 20 20 73 | 69 6d 70 69 6e 67 2e 63 |sts.. s|imping.c|
|00002f20| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00002f30| 20 53 69 6d 75 6c 61 74 | 65 73 20 74 68 65 20 22 | Simulat|es the "|
|00002f40| 70 69 6e 67 20 2d 6c 20 | 36 35 35 31 30 20 76 69 |ping -l |65510 vi|
|00002f50| 63 74 69 6d 2e 68 6f 73 | 74 22 20 66 72 6f 6d 20 |ctim.hos|t" from |
|00002f60| 57 69 6e 64 6f 77 73 39 | 35 20 2d 20 61 6c 73 6f |Windows9|5 - also|
|00002f70| 20 63 6f 6d 70 69 6c 65 | 73 20 6f 6e 20 4c 69 6e | compile|s on Lin|
|00002f80| 75 78 2e 0d 20 20 62 69 | 6e 64 2e 74 78 74 0d 20 |ux.. bi|nd.txt. |
|00002f90| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 54 | | T|
|00002fa0| 68 69 73 20 64 65 73 63 | 72 69 62 65 73 20 61 20 |his desc|ribes a |
|00002fb0| 70 6f 74 65 6e 69 74 61 | 6c 20 64 65 6e 69 61 6c |potenita|l denial|
|00002fc0| 20 6f 66 20 73 65 72 76 | 69 63 65 20 70 72 6f 62 | of serv|ice prob|
|00002fd0| 6c 65 6d 20 77 69 74 68 | 20 42 49 4e 44 2d 34 2e |lem with| BIND-4.|
|00002fe0| 39 2e 35 2d 50 31 2e 0d | 20 20 70 6f 6e 67 2e 63 |9.5-P1..| pong.c|
|00002ff0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00003000| 20 41 74 74 61 63 6b 73 | 20 61 6e 20 61 72 62 69 | Attacks| an arbi|
|00003010| 74 72 61 72 79 20 68 6f | 73 74 20 62 79 20 73 65 |trary ho|st by se|
|00003020| 6e 64 69 6e 67 20 61 20 | 66 6c 6f 6f 64 20 6f 66 |nding a |flood of|
|00003030| 20 73 70 6f 6f 66 65 64 | 20 49 43 4d 50 20 70 61 | spoofed| ICMP pa|
|00003040| 63 6b 65 74 73 2e 0d 20 | 20 6a 69 7a 7a 2e 63 0d |ckets.. | jizz.c.|
|00003050| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00003060| 41 20 44 4e 53 20 73 70 | 6f 6f 66 65 72 20 74 68 |A DNS sp|oofer th|
|00003070| 61 74 20 65 78 70 6c 6f | 69 74 73 20 74 68 65 20 |at explo|its the |
|00003080| 63 61 63 68 65 20 76 75 | 6c 6e 65 72 61 62 69 6c |cache vu|lnerabil|
|00003090| 69 74 79 20 69 6e 20 6d | 6f 73 74 20 42 49 4e 44 |ity in m|ost BIND|
|000030a0| 20 64 61 65 6d 6f 6e 73 | 2e 0d 20 20 61 6e 79 2d | daemons|.. any-|
|000030b0| 65 72 65 63 74 2e 63 0d | 20 20 20 20 20 20 20 20 |erect.c.| |
|000030c0| 20 20 20 20 20 20 20 20 | 41 6e 6f 74 68 65 72 20 | |Another |
|000030d0| 44 4e 53 20 73 70 6f 6f | 66 69 6e 67 20 74 79 70 |DNS spoo|fing typ|
|000030e0| 65 20 70 72 6f 67 72 61 | 6d 20 6d 75 63 68 20 6c |e progra|m much l|
|000030f0| 69 6b 65 20 6a 69 7a 7a | 2e 63 2e 20 43 6f 6d 70 |ike jizz|.c. Comp|
|00003100| 69 6c 65 73 20 6f 6e 20 | 4c 69 6e 75 78 2e 0d 20 |iles on |Linux.. |
|00003110| 20 68 69 64 65 2e 63 0d | 20 20 20 20 20 20 20 20 | hide.c.| |
|00003120| 20 20 20 20 20 20 20 20 | 45 78 70 6c 6f 69 74 73 | |Exploits|
|00003130| 20 61 20 77 6f 72 6c 64 | 2d 77 72 69 74 65 61 62 | a world|-writeab|
|00003140| 6c 65 20 2f 65 74 63 2f | 75 74 6d 70 20 61 6e 64 |le /etc/|utmp and|
|00003150| 20 61 6c 6c 6f 77 20 74 | 68 65 20 75 73 65 72 20 | allow t|he user |
|00003160| 74 6f 20 6d 6f 64 69 66 | 79 20 69 74 20 69 6e 74 |to modif|y it int|
|00003170| 65 72 61 63 74 69 76 65 | 6c 79 2e 0d 20 20 68 73 |eractive|ly.. hs|
|00003180| 68 30 30 32 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |h002.c. | |
|00003190| 20 20 20 20 20 20 20 54 | 68 69 73 20 69 73 20 61 | T|his is a|
|000031a0| 20 6e 65 61 74 20 6c 69 | 74 74 6c 65 20 73 68 65 | neat li|ttle she|
|000031b0| 6c 6c 20 66 6f 72 20 65 | 78 70 65 72 69 6d 65 6e |ll for e|xperimen|
|000031c0| 74 61 74 69 6f 6e 20 77 | 69 74 68 20 6c 6f 74 73 |tation w|ith lots|
|000031d0| 20 6f 66 20 69 6e 74 65 | 72 65 73 74 69 6e 67 20 | of inte|resting |
|000031e0| 66 65 61 74 75 72 65 73 | 2e 0d 20 20 6e 66 73 77 |features|.. nfsw|
|000031f0| 61 74 63 68 34 2e 31 2e | 74 61 72 2e 5a 0d 20 20 |atch4.1.|tar.Z. |
|00003200| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00003210| 69 73 20 6c 65 74 73 20 | 79 6f 75 20 6d 6f 6e 69 |is lets |you moni|
|00003220| 74 6f 72 20 4e 46 53 20 | 72 65 71 75 65 73 74 73 |tor NFS |requests|
|00003230| 20 74 6f 20 61 6e 79 20 | 67 69 76 65 6e 20 6d 61 | to any |given ma|
|00003240| 63 68 69 6e 65 20 6f 72 | 20 74 68 65 20 65 6e 74 |chine or| the ent|
|00003250| 69 72 65 20 6e 65 74 77 | 6f 72 6b 2e 0d 20 20 6e |ire netw|ork.. n|
|00003260| 66 73 74 72 61 63 65 2e | 74 67 7a 0d 20 20 20 20 |fstrace.|tgz. |
|00003270| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|00003280| 20 6e 66 73 74 72 61 63 | 65 20 70 61 63 6b 61 67 | nfstrac|e packag|
|00003290| 65 20 6c 65 74 73 20 79 | 6f 75 20 74 6f 20 70 65 |e lets y|ou to pe|
|000032a0| 72 66 6f 72 6d 20 4e 46 | 53 20 74 72 61 63 69 6e |rform NF|S tracin|
|000032b0| 67 20 62 79 20 6e 65 74 | 77 6f 72 6b 20 6d 6f 6e |g by net|work mon|
|000032c0| 69 74 6f 72 69 6e 67 2e | 0d 20 20 77 75 66 74 70 |itoring.|. wuftp|
|000032d0| 64 2d 6f 77 72 69 74 65 | 2e 73 68 0d 20 20 20 20 |d-owrite|.sh. |
|000032e0| 20 20 20 20 20 20 20 20 | 20 20 20 20 45 78 70 6c | | Expl|
|000032f0| 6f 69 74 73 20 61 20 62 | 75 67 20 69 6e 20 77 75 |oits a b|ug in wu|
|00003300| 2d 66 74 70 64 20 74 6f | 20 63 72 65 61 74 65 20 |-ftpd to| create |
|00003310| 6f 72 20 6f 76 65 72 77 | 72 69 74 65 20 61 20 66 |or overw|rite a f|
|00003320| 69 6c 65 20 61 6e 79 77 | 68 65 72 65 20 6f 6e 20 |ile anyw|here on |
|00003330| 74 68 65 20 66 69 6c 65 | 73 79 73 74 65 6d 2e 0d |the file|system..|
|00003340| 20 20 77 75 66 74 70 64 | 2d 73 64 75 6d 70 2e 73 | wuftpd|-sdump.s|
|00003350| 68 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |h. | |
|00003360| 20 20 45 78 70 6c 6f 69 | 74 20 61 20 62 75 67 20 | Exploi|t a bug |
|00003370| 69 6e 20 77 75 2d 66 74 | 70 64 20 74 6f 20 61 73 |in wu-ft|pd to as|
|00003380| 73 65 6d 62 6c 65 20 61 | 6e 64 20 76 69 65 77 20 |semble a|nd view |
|00003390| 74 68 65 20 73 68 61 64 | 6f 77 20 70 61 73 73 77 |the shad|ow passw|
|000033a0| 6f 72 64 20 66 69 6c 65 | 2e 0d 20 20 73 68 61 64 |ord file|.. shad|
|000033b0| 6f 77 79 61 6e 6b 2e 63 | 0d 20 20 20 20 20 20 20 |owyank.c|. |
|000033c0| 20 20 20 20 20 20 20 20 | 20 54 68 69 73 20 77 69 | | This wi|
|000033d0| 6c 6c 20 72 65 63 6f 6e | 73 74 72 75 63 74 20 73 |ll recon|struct s|
|000033e0| 68 61 64 6f 77 20 65 6e | 74 72 69 65 73 20 66 72 |hadow en|tries fr|
|000033f0| 6f 6d 20 74 68 65 20 63 | 6f 72 65 20 66 69 6c 65 |om the c|ore file|
|00003400| 20 66 72 6f 6d 20 66 74 | 70 20 64 61 65 6d 6f 6e | from ft|p daemon|
|00003410| 20 73 65 67 6d 65 6e 74 | 69 6e 67 2e 0d 20 20 49 | segment|ing.. I|
|00003420| 43 4d 50 69 6e 66 6f 20 | 56 31 2e 31 30 0d 20 20 |CMPinfo |V1.10. |
|00003430| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 49 43 | | IC|
|00003440| 4d 50 69 6e 66 6f 20 69 | 73 20 61 20 74 6f 6f 6c |MPinfo i|s a tool|
|00003450| 20 66 6f 72 20 6c 6f 6f | 6b 69 6e 67 20 61 74 20 | for loo|king at |
|00003460| 49 43 4d 50 20 6d 65 73 | 73 61 67 65 73 20 72 65 |ICMP mes|sages re|
|00003470| 63 65 69 76 65 64 20 6f | 6e 20 74 68 65 20 72 75 |ceived o|n the ru|
|00003480| 6e 6e 69 6e 67 20 68 6f | 73 74 2e 0d 20 20 69 64 |nning ho|st.. id|
|00003490| 65 6e 74 2d 73 63 61 6e | 2e 63 0d 20 20 20 20 20 |ent-scan|.c. |
|000034a0| 20 20 20 20 20 20 20 20 | 20 20 20 54 43 50 20 73 | | TCP s|
|000034b0| 63 61 6e 6e 65 72 20 74 | 68 61 74 20 67 65 74 73 |canner t|hat gets|
|000034c0| 20 74 68 65 20 75 73 65 | 72 6e 61 6d 65 20 6f 66 | the use|rname of|
|000034d0| 20 74 68 65 20 64 61 65 | 6d 6f 6e 20 72 75 6e 6e | the dae|mon runn|
|000034e0| 69 6e 67 20 6f 6e 20 74 | 68 65 20 73 70 65 63 69 |ing on t|he speci|
|000034f0| 66 69 65 64 20 70 6f 72 | 74 2e 0d 20 20 61 73 63 |fied por|t.. asc|
|00003500| 65 6e 64 2e 74 78 74 0d | 20 20 20 20 20 20 20 20 |end.txt.| |
|00003510| 20 20 20 20 20 20 20 20 | 50 72 6f 67 72 61 6d 20 | |Program |
|00003520| 66 6f 72 20 4c 69 6e 75 | 78 20 64 65 73 69 67 6e |for Linu|x design|
|00003530| 65 64 20 74 6f 20 61 74 | 74 61 63 6b 20 41 73 63 |ed to at|tack Asc|
|00003540| 65 6e 64 20 72 6f 75 74 | 65 72 73 20 77 69 74 68 |end rout|ers with|
|00003550| 20 7a 65 72 6f 20 6c 65 | 6e 67 74 68 20 74 63 70 | zero le|ngth tcp|
|00003560| 20 6f 66 66 73 65 74 73 | 2e 0d 20 20 67 7a 69 70 | offsets|.. gzip|
|00003570| 2e 74 78 74 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.txt. | |
|00003580| 20 20 20 20 20 57 68 69 | 6c 65 20 61 20 66 69 6c | Whi|le a fil|
|00003590| 65 20 69 73 20 62 65 69 | 6e 67 20 63 6f 6d 70 72 |e is bei|ng compr|
|000035a0| 65 73 73 65 64 20 77 69 | 74 68 20 67 7a 69 70 20 |essed wi|th gzip |
|000035b0| 69 74 20 69 73 20 77 6f | 72 6c 64 20 72 65 61 64 |it is wo|rld read|
|000035c0| 61 62 6c 65 2e 0d 20 20 | 49 53 53 20 28 56 31 2e |able.. |ISS (V1.|
|000035d0| 33 29 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |3). | |
|000035e0| 20 20 20 49 6e 74 65 72 | 6e 65 74 20 53 65 63 75 | Inter|net Secu|
|000035f0| 72 69 74 79 20 53 63 61 | 6e 6e 65 72 2e 20 53 63 |rity Sca|nner. Sc|
|00003600| 61 6e 73 20 73 75 62 6e | 65 74 73 20 61 6e 64 20 |ans subn|ets and |
|00003610| 67 61 74 68 65 72 73 20 | 69 6e 66 6f 2e 20 61 62 |gathers |info. ab|
|00003620| 6f 75 74 20 74 68 65 20 | 68 6f 73 74 73 20 69 74 |out the |hosts it|
|00003630| 20 66 69 6e 64 73 2e 0d | 20 20 6c 69 62 63 2e 73 | finds..| libc.s|
|00003640| 6f 2e 35 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |o.5. | |
|00003650| 20 20 20 20 54 68 69 73 | 20 69 73 20 61 20 68 61 | This| is a ha|
|00003660| 63 6b 65 64 20 6c 69 62 | 63 2e 73 6f 2e 35 20 66 |cked lib|c.so.5 f|
|00003670| 6f 72 20 4c 69 6e 75 78 | 20 74 68 61 74 20 73 70 |or Linux| that sp|
|00003680| 61 77 6e 73 20 61 20 73 | 68 65 6c 6c 20 77 68 65 |awns a s|hell whe|
|00003690| 6e 20 61 20 63 61 6c 6c | 20 69 73 20 6d 61 64 65 |n a call| is made|
|000036a0| 20 74 6f 20 63 72 79 70 | 74 28 29 2e 0d 20 20 73 | to cryp|t().. s|
|000036b0| 64 74 63 6d 5f 63 6f 6e | 76 65 72 74 2e 74 78 74 |dtcm_con|vert.txt|
|000036c0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|000036d0| 20 54 68 69 73 20 65 78 | 70 6c 61 69 6e 73 20 74 | This ex|plains t|
|000036e0| 6f 20 68 6f 77 20 65 78 | 70 6c 6f 69 74 20 73 64 |o how ex|ploit sd|
|000036f0| 74 63 6d 5f 63 6f 6e 76 | 65 72 74 20 6f 6e 20 53 |tcm_conv|ert on S|
|00003700| 6f 6c 61 72 69 73 20 6d | 61 63 68 69 6e 65 73 20 |olaris m|achines |
|00003710| 74 6f 20 67 65 74 20 72 | 6f 6f 74 20 61 63 63 65 |to get r|oot acce|
|00003720| 73 73 2e 0d 20 20 6d 6e | 74 0d 20 20 20 20 20 20 |ss.. mn|t. |
|00003730| 20 20 20 20 20 20 20 20 | 20 20 45 78 70 6c 6f 69 | | Exploi|
|00003740| 74 73 20 61 20 68 6f 6c | 65 20 69 6e 20 48 50 2d |ts a hol|e in HP-|
|00003750| 55 58 20 39 20 72 70 63 | 2e 6d 6f 75 6e 74 64 20 |UX 9 rpc|.mountd |
|00003760| 70 72 6f 67 72 61 6d 20 | 61 6e 64 20 6c 65 74 73 |program |and lets|
|00003770| 20 79 6f 75 20 73 74 65 | 61 6c 20 4e 46 53 20 66 | you ste|al NFS f|
|00003780| 69 6c 65 20 68 61 6e 64 | 6c 65 73 2e 0d 20 20 4e |ile hand|les.. N|
|00003790| 46 53 20 53 68 65 6c 6c | 0d 20 20 20 20 20 20 20 |FS Shell|. |
|000037a0| 20 20 20 20 20 20 20 20 | 20 54 68 69 73 20 73 68 | | This sh|
|000037b0| 6f 75 6c 64 20 62 65 20 | 76 65 72 79 20 75 73 65 |ould be |very use|
|000037c0| 66 75 6c 20 69 66 20 79 | 6f 75 20 68 61 76 65 20 |ful if y|ou have |
|000037d0| 6c 6f 63 61 74 65 64 20 | 61 6e 20 69 6e 73 65 63 |located |an insec|
|000037e0| 75 72 65 20 4e 46 53 20 | 73 65 72 76 65 72 2e 0d |ure NFS |server..|
|000037f0| 20 20 70 6d 63 72 61 73 | 68 2e 63 0d 20 20 20 20 | pmcras|h.c. |
|00003800| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|00003810| 20 61 6c 6c 6f 77 73 20 | 79 6f 75 20 74 6f 20 63 | allows |you to c|
|00003820| 72 61 73 68 20 41 4e 59 | 20 4c 69 76 69 6e 67 73 |rash ANY| Livings|
|00003830| 74 6f 6e 20 50 6f 72 74 | 4d 61 73 74 65 72 20 62 |ton Port|Master b|
|00003840| 79 20 6f 76 65 72 66 6c | 6f 77 69 6e 67 20 62 75 |y overfl|owing bu|
|00003850| 66 66 65 72 73 2e 0d 20 | 20 70 6f 70 33 2e 63 0d |ffers.. | pop3.c.|
|00003860| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00003870| 41 74 74 65 6d 70 73 20 | 6d 75 6c 69 74 70 6c 65 |Attemps |mulitple|
|00003880| 20 75 73 65 72 6e 61 6d | 65 2f 70 61 73 73 77 6f | usernam|e/passwo|
|00003890| 72 64 20 67 75 65 73 73 | 65 73 20 6f 6e 20 6d 61 |rd guess|es on ma|
|000038a0| 63 68 69 6e 65 73 20 72 | 75 6e 6e 69 6e 67 20 50 |chines r|unning P|
|000038b0| 4f 50 33 2e 0d 20 20 70 | 73 72 61 63 65 2e 63 0d |OP3.. p|srace.c.|
|000038c0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|000038d0| 54 68 69 73 20 63 6f 64 | 65 20 65 78 70 6c 6f 69 |This cod|e exploi|
|000038e0| 74 73 20 61 20 72 61 63 | 65 20 63 6f 6e 64 69 74 |ts a rac|e condit|
|000038f0| 69 6f 6e 20 69 6e 20 53 | 6f 6c 61 72 69 73 2c 20 |ion in S|olaris, |
|00003900| 74 68 75 73 20 61 6c 6c | 6f 77 69 6e 67 20 79 6f |thus all|owing yo|
|00003910| 75 20 74 6f 20 6d 61 6b | 65 20 61 20 72 6f 6f 74 |u to mak|e a root|
|00003920| 20 73 68 65 6c 6c 2e 0d | 20 20 72 70 63 5f 63 68 | shell..| rpc_ch|
|00003930| 6b 2e 73 68 0d 20 20 20 | 20 20 20 20 20 20 20 20 |k.sh. | |
|00003940| 20 20 20 20 20 53 68 65 | 6c 6c 20 53 63 72 69 70 | She|ll Scrip|
|00003950| 74 20 74 6f 20 67 65 74 | 20 61 20 6c 69 73 74 20 |t to get| a list |
|00003960| 6f 66 20 72 75 6e 6e 69 | 6e 67 20 68 6f 73 74 73 |of runni|ng hosts|
|00003970| 20 66 72 6f 6d 20 61 20 | 44 4e 53 20 6e 61 6d 65 | from a |DNS name|
|00003980| 73 65 72 76 65 72 20 66 | 6f 72 20 61 20 67 69 76 |server f|or a giv|
|00003990| 65 6e 20 64 6f 6d 61 69 | 6e 2e 0d 20 20 73 65 71 |en domai|n.. seq|
|000039a0| 5f 6e 75 6d 62 65 72 2e | 63 0d 20 20 20 20 20 20 |_number.|c. |
|000039b0| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 69 | | This i|
|000039c0| 73 20 61 20 70 72 6f 67 | 72 61 6d 20 74 68 61 74 |s a prog|ram that|
|000039d0| 20 65 78 70 6c 6f 69 74 | 73 20 74 68 65 20 54 43 | exploit|s the TC|
|000039e0| 50 20 53 65 71 75 65 6e | 63 65 20 4e 75 6d 62 65 |P Sequen|ce Numbe|
|000039f0| 72 20 47 65 6e 65 72 61 | 74 6f 72 20 62 75 67 2e |r Genera|tor bug.|
|00003a00| 0d 20 20 61 73 70 70 70 | 2e 74 78 74 0d 20 20 20 |. asppp|.txt. |
|00003a10| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 4f 6e 20 | | On |
|00003a20| 53 6f 6c 61 72 69 73 20 | 32 2e 35 78 38 36 2c 20 |Solaris |2.5x86, |
|00003a30| 2f 74 6d 70 2f 2e 61 73 | 70 70 70 2e 66 69 66 6f |/tmp/.as|ppp.fifo|
|00003a40| 20 63 61 6e 20 62 65 20 | 75 73 65 64 20 74 6f 20 | can be |used to |
|00003a50| 6d 61 6b 65 20 61 20 77 | 6f 72 6c 64 20 77 72 69 |make a w|orld wri|
|00003a60| 74 65 61 62 6c 65 20 2e | 72 68 6f 73 74 73 20 66 |teable .|rhosts f|
|00003a70| 69 6c 65 2e 0d 20 20 6b | 63 6d 73 2e 74 78 74 0d |ile.. k|cms.txt.|
|00003a80| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00003a90| 45 78 70 6c 61 69 6e 73 | 20 68 6f 77 20 74 6f 20 |Explains| how to |
|00003aa0| 67 65 74 20 72 6f 6f 74 | 20 6f 6e 20 73 6f 6c 61 |get root| on sola|
|00003ab0| 72 69 73 20 32 2e 35 20 | 62 79 20 65 78 70 6c 6f |ris 2.5 |by explo|
|00003ac0| 69 74 69 6e 67 20 2f 75 | 73 72 2f 6f 70 65 6e 77 |iting /u|sr/openw|
|00003ad0| 69 6e 2f 62 69 6e 2f 6b | 63 6d 73 5f 63 61 6c 69 |in/bin/k|cms_cali|
|00003ae0| 62 72 61 74 65 2e 0d 20 | 20 72 65 6d 6f 76 65 2e |brate.. | remove.|
|00003af0| 63 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |c. | |
|00003b00| 20 20 41 20 75 6e 69 76 | 65 72 73 61 6c 20 75 74 | A univ|ersal ut|
|00003b10| 6d 70 2c 20 77 74 6d 70 | 2c 20 61 6e 64 20 6c 61 |mp, wtmp|, and la|
|00003b20| 73 74 6c 6f 67 20 65 64 | 69 74 6f 72 20 74 68 61 |stlog ed|itor tha|
|00003b30| 74 20 61 6c 73 6f 20 63 | 6f 6d 70 69 6c 65 73 20 |t also c|ompiles |
|00003b40| 75 6e 64 65 72 20 41 49 | 58 20 26 20 53 43 4f 2e |under AI|X & SCO.|
|00003b50| 0d 20 20 6b 6d 65 6d 74 | 68 69 65 66 2e 63 0d 20 |. kmemt|hief.c. |
|00003b60| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 49 | | I|
|00003b70| 66 20 2f 64 65 76 2f 6b | 6d 65 6d 20 69 73 20 77 |f /dev/k|mem is w|
|00003b80| 72 69 74 65 61 62 6c 65 | 20 62 79 20 6e 6f 72 6d |riteable| by norm|
|00003b90| 61 6c 20 75 73 65 72 73 | 2c 20 74 68 65 6e 20 74 |al users|, then t|
|00003ba0| 68 69 73 20 70 72 6f 67 | 72 61 6d 20 77 69 6c 6c |his prog|ram will|
|00003bb0| 20 67 65 74 20 79 6f 75 | 20 72 6f 6f 74 2e 0d 20 | get you| root.. |
|00003bc0| 20 73 6c 61 6d 6d 65 72 | 0d 20 20 20 20 20 20 20 | slammer|. |
|00003bd0| 20 20 20 20 20 20 20 20 | 20 53 6c 61 6d 6d 65 72 | | Slammer|
|00003be0| 20 6c 65 74 73 20 79 6f | 75 20 69 73 73 75 65 20 | lets yo|u issue |
|00003bf0| 61 72 62 69 74 72 61 79 | 20 63 6f 6d 6d 61 6e 64 |arbitray| command|
|00003c00| 73 20 6f 6e 20 68 6f 73 | 74 73 20 62 79 20 65 78 |s on hos|ts by ex|
|00003c10| 70 6c 6f 74 69 6e 67 20 | 79 70 20 64 61 65 6d 6f |ploting |yp daemo|
|00003c20| 6e 73 2e 0d 20 20 53 6f | 6c 61 72 69 73 20 53 6e |ns.. So|laris Sn|
|00003c30| 69 66 66 65 72 0d 20 20 | 20 20 20 20 20 20 20 20 |iffer. | |
|00003c40| 20 20 20 20 20 20 54 68 | 69 73 20 69 73 20 61 20 | Th|is is a |
|00003c50| 76 65 72 73 69 6f 6e 20 | 6f 66 20 45 53 6e 69 66 |version |of ESnif|
|00003c60| 66 2e 63 20 74 68 61 74 | 20 68 61 73 20 62 65 65 |f.c that| has bee|
|00003c70| 6e 20 6d 6f 64 69 66 69 | 65 64 20 66 6f 72 20 53 |n modifi|ed for S|
|00003c80| 6f 6c 61 72 69 73 20 32 | 2e 58 2e 0d 20 20 78 70 |olaris 2|.X.. xp|
|00003c90| 75 73 68 65 72 2e 63 0d | 20 20 20 20 20 20 20 20 |usher.c.| |
|00003ca0| 20 20 20 20 20 20 20 20 | 54 68 69 73 20 69 73 20 | |This is |
|00003cb0| 61 20 6e 65 61 74 20 77 | 61 79 20 74 6f 20 73 65 |a neat w|ay to se|
|00003cc0| 6e 64 20 6b 65 79 62 6f | 61 72 64 20 65 76 65 6e |nd keybo|ard even|
|00003cd0| 74 73 20 74 6f 20 61 6e | 6f 74 68 65 72 20 75 73 |ts to an|other us|
|00003ce0| 65 72 27 73 20 58 20 77 | 69 6e 64 6f 77 2e 0d 20 |er's X w|indow.. |
|00003cf0| 20 78 73 6e 6f 6f 70 2e | 63 0d 20 20 20 20 20 20 | xsnoop.|c. |
|00003d00| 20 20 20 20 20 20 20 20 | 20 20 54 68 69 73 20 70 | | This p|
|00003d10| 72 6f 67 72 61 6d 20 61 | 6c 6c 6f 77 73 20 79 6f |rogram a|llows yo|
|00003d20| 75 20 74 6f 20 73 70 79 | 20 6f 6e 20 61 6e 6f 74 |u to spy| on anot|
|00003d30| 68 65 72 20 75 73 65 72 | 27 73 20 6b 65 79 62 6f |her user|'s keybo|
|00003d40| 61 72 64 20 65 76 65 6e | 74 73 20 6c 69 6b 65 20 |ard even|ts like |
|00003d50| 78 6b 65 79 2e 63 0d 20 | 20 53 74 72 6f 62 65 20 |xkey.c. | Strobe |
|00003d60| 28 56 31 2e 30 33 29 0d | 20 20 20 20 20 20 20 20 |(V1.03).| |
|00003d70| 20 20 20 20 20 20 20 20 | 53 63 61 6e 73 20 54 43 | |Scans TC|
|00003d80| 50 20 70 6f 72 74 73 20 | 6f 6e 20 61 20 74 61 72 |P ports |on a tar|
|00003d90| 67 65 74 20 68 6f 73 74 | 20 61 6e 64 20 72 65 76 |get host| and rev|
|00003da0| 65 61 6c 73 20 77 68 69 | 63 68 20 64 61 65 6d 6f |eals whi|ch daemo|
|00003db0| 6e 73 20 61 72 65 20 72 | 75 6e 6e 69 6e 67 2e 0d |ns are r|unning..|
|00003dc0| 20 20 54 69 67 65 72 20 | 28 56 32 2e 32 2e 33 29 | Tiger |(V2.2.3)|
|00003dd0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00003de0| 20 54 69 67 65 72 20 61 | 74 74 65 6d 70 73 20 74 | Tiger a|ttemps t|
|00003df0| 6f 20 65 78 70 6c 6f 69 | 74 20 6b 6e 6f 77 6e 20 |o exploi|t known |
|00003e00| 62 75 67 73 2c 20 68 6f | 6c 65 73 2c 20 61 6e 64 |bugs, ho|les, and|
|00003e10| 20 6d 69 73 63 6f 6e 66 | 69 67 75 72 61 74 69 6f | misconf|iguratio|
|00003e20| 6e 73 20 74 6f 20 61 74 | 74 61 69 6e 20 72 6f 6f |ns to at|tain roo|
|00003e30| 74 2e 0d 20 20 6c 71 75 | 65 72 79 6c 76 2e 63 0d |t.. lqu|erylv.c.|
|00003e40| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00003e50| 54 68 69 73 20 6f 76 65 | 72 77 72 69 74 65 73 20 |This ove|rwrites |
|00003e60| 61 20 62 75 66 66 65 72 | 20 69 6e 20 2f 75 73 72 |a buffer| in /usr|
|00003e70| 2f 73 62 69 6e 2f 6c 71 | 75 65 72 79 6c 76 20 6f |/sbin/lq|uerylv o|
|00003e80| 6e 20 41 49 58 20 73 79 | 73 74 65 6d 73 2c 20 74 |n AIX sy|stems, t|
|00003e90| 68 75 73 20 67 69 76 69 | 6e 67 20 61 20 72 6f 6f |hus givi|ng a roo|
|00003ea0| 74 20 73 68 65 6c 6c 2e | 0d 20 20 75 64 70 73 63 |t shell.|. udpsc|
|00003eb0| 61 6e 2e 63 0d 20 20 20 | 20 20 20 20 20 20 20 20 |an.c. | |
|00003ec0| 20 20 20 20 20 49 64 65 | 6e 74 69 66 79 73 20 6f | Ide|ntifys o|
|00003ed0| 70 65 6e 20 55 44 50 20 | 70 6f 72 74 73 20 62 79 |pen UDP |ports by|
|00003ee0| 20 73 65 6e 64 69 6e 67 | 20 61 20 62 6f 67 75 73 | sending| a bogus|
|00003ef0| 20 55 44 50 20 70 61 63 | 6b 65 74 20 61 6e 64 20 | UDP pac|ket and |
|00003f00| 77 61 69 74 20 66 6f 72 | 20 61 20 72 65 73 70 6f |wait for| a respo|
|00003f10| 6e 73 65 2e 0d 20 20 70 | 6f 72 74 64 2e 63 0d 20 |nse.. p|ortd.c. |
|00003f20| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 41 | | A|
|00003f30| 20 64 61 65 6d 6f 6e 20 | 74 68 61 74 20 6c 69 73 | daemon |that lis|
|00003f40| 74 65 6e 73 20 6f 6e 20 | 61 20 70 6f 72 74 20 61 |tens on |a port a|
|00003f50| 6e 64 20 70 72 6f 76 69 | 64 65 73 20 70 61 73 73 |nd provi|des pass|
|00003f60| 77 6f 72 64 65 64 20 73 | 68 65 6c 6c 20 61 63 63 |worded s|hell acc|
|00003f70| 65 73 73 2e 0d 20 20 70 | 69 6e 67 65 78 70 6c 6f |ess.. p|ingexplo|
|00003f80| 69 74 2e 63 0d 20 20 20 | 20 20 20 20 20 20 20 20 |it.c. | |
|00003f90| 20 20 20 20 20 54 68 69 | 73 20 6c 65 74 73 20 79 | Thi|s lets y|
|00003fa0| 6f 75 20 73 65 6e 64 20 | 6f 76 65 72 73 69 7a 65 |ou send |oversize|
|00003fb0| 64 20 49 43 4d 50 20 70 | 61 63 6b 65 74 73 20 66 |d ICMP p|ackets f|
|00003fc0| 72 6f 6d 20 61 20 75 6e | 69 78 20 62 6f 78 20 6a |rom a un|ix box j|
|00003fd0| 75 73 74 20 6c 69 6b 65 | 20 57 69 6e 39 35 2e 0d |ust like| Win95..|
|00003fe0| 20 20 63 68 65 63 6b 73 | 79 73 6c 6f 67 2e 74 67 | checks|yslog.tg|
|00003ff0| 7a 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |z. | |
|00004000| 20 20 41 6e 61 6c 79 7a | 65 20 79 6f 75 72 20 73 | Analyz|e your s|
|00004010| 79 73 74 65 6d 20 6c 6f | 67 73 20 66 6f 72 20 73 |ystem lo|gs for s|
|00004020| 65 63 75 72 69 74 79 20 | 70 72 6f 62 6c 65 6d 73 |ecurity |problems|
|00004030| 20 77 68 69 6c 65 20 69 | 67 6e 6f 72 69 6e 67 20 | while i|gnoring |
|00004040| 6e 6f 72 6d 61 6c 20 62 | 65 68 61 76 69 6f 72 2e |normal b|ehavior.|
|00004050| 0d 20 20 64 6f 73 65 6d | 75 2e 74 78 74 0d 20 20 |. dosem|u.txt. |
|00004060| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 4f 6e | | On|
|00004070| 20 44 65 62 69 61 6e 20 | 76 31 2e 31 2c 20 2f 75 | Debian |v1.1, /u|
|00004080| 73 72 2f 73 62 69 6e 2f | 64 6f 73 20 63 61 6e 20 |sr/sbin/|dos can |
|00004090| 62 65 20 75 73 65 64 20 | 74 6f 20 72 65 61 64 20 |be used |to read |
|000040a0| 61 6e 79 20 66 69 6c 65 | 20 6f 6e 20 74 68 65 20 |any file| on the |
|000040b0| 73 79 73 74 65 6d 2e 0d | 20 20 79 61 70 69 6e 67 |system..| yaping|
|000040c0| 2e 30 2e 31 2e 74 67 7a | 0d 20 20 20 20 20 20 20 |.0.1.tgz|. |
|000040d0| 20 20 20 20 20 20 20 20 | 20 59 65 74 20 61 6e 6f | | Yet ano|
|000040e0| 74 68 65 72 20 70 69 6e | 67 20 66 6f 72 20 4c 69 |ther pin|g for Li|
|000040f0| 6e 75 78 2e 20 50 61 63 | 6b 65 74 73 20 6f 66 20 |nux. Pac|kets of |
|00004100| 73 69 7a 65 20 3e 20 36 | 35 35 33 35 20 6f 63 74 |size > 6|5535 oct|
|00004110| 65 74 73 20 61 72 65 20 | 73 75 70 70 6f 72 74 65 |ets are |supporte|
|00004120| 64 2e 0d 20 20 78 63 72 | 6f 77 62 61 72 2e 63 0d |d.. xcr|owbar.c.|
|00004130| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00004140| 53 6f 75 72 63 65 20 63 | 6f 64 65 20 74 68 61 74 |Source c|ode that|
|00004150| 20 67 65 74 73 20 79 6f | 75 20 61 20 70 6f 69 6e | gets yo|u a poin|
|00004160| 74 65 72 20 74 6f 20 61 | 6e 20 58 20 44 69 73 70 |ter to a|n X Disp|
|00004170| 6c 61 79 20 65 76 65 6e | 20 61 66 74 65 72 20 61 |lay even| after a|
|00004180| 6e 20 78 68 6f 73 74 20 | 2d 20 0d 20 20 78 6b 65 |n xhost |- . xke|
|00004190| 79 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |y.c. | |
|000041a0| 20 20 20 20 41 74 74 61 | 63 68 20 74 6f 20 61 6e | Atta|ch to an|
|000041b0| 79 20 58 20 73 65 72 76 | 65 72 20 79 6f 75 20 68 |y X serv|er you h|
|000041c0| 61 76 65 20 70 65 72 6d | 69 73 73 69 6f 6e 20 74 |ave perm|ission t|
|000041d0| 6f 20 61 6e 64 20 77 61 | 74 63 68 20 74 68 65 20 |o and wa|tch the |
|000041e0| 75 73 65 72 27 73 20 6b | 65 79 62 6f 61 72 64 2e |user's k|eyboard.|
|000041f0| 0d 20 20 58 20 57 61 74 | 63 68 20 57 69 6e 64 6f |. X Wat|ch Windo|
|00004200| 77 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |w. | |
|00004210| 20 20 49 66 20 79 6f 75 | 20 68 61 76 65 20 61 63 | If you| have ac|
|00004220| 63 65 73 73 20 6f 6e 20 | 61 20 68 6f 73 74 27 73 |cess on |a host's|
|00004230| 20 58 20 73 65 72 76 65 | 72 2c 74 68 69 73 20 77 | X serve|r,this w|
|00004240| 69 6c 6c 20 73 68 6f 77 | 20 74 68 65 20 77 69 6e |ill show| the win|
|00004250| 64 6f 77 20 6f 6e 20 79 | 6f 75 72 20 58 2d 73 65 |dow on y|our X-se|
|00004260| 72 76 65 72 2e 0d 20 20 | 6d 65 73 73 61 67 65 73 |rver.. |messages|
|00004270| 2e 73 68 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.sh. | |
|00004280| 20 20 20 20 50 61 72 73 | 65 73 20 74 68 72 6f 75 | Pars|es throu|
|00004290| 67 68 20 2f 76 61 72 2f | 61 64 6d 2f 6d 65 73 73 |gh /var/|adm/mess|
|000042a0| 61 67 65 73 20 74 6f 20 | 73 65 65 20 69 66 20 75 |ages to |see if u|
|000042b0| 73 65 72 20 74 79 70 65 | 64 20 70 61 73 73 77 6f |ser type|d passwo|
|000042c0| 72 64 20 61 74 20 6c 6f | 67 69 6e 20 70 72 6f 6d |rd at lo|gin prom|
|000042d0| 70 74 2e 0d 20 20 73 65 | 63 75 72 65 6c 69 62 2e |pt.. se|curelib.|
|000042e0| 74 61 72 2e 5a 0d 20 20 | 20 20 20 20 20 20 20 20 |tar.Z. | |
|000042f0| 20 20 20 20 20 20 53 68 | 61 72 65 64 20 6c 69 62 | Sh|ared lib|
|00004300| 72 61 72 79 20 66 6f 72 | 20 53 75 6e 4f 53 20 34 |rary for| SunOS 4|
|00004310| 2e 31 20 61 6e 64 20 6c | 61 74 65 72 20 74 68 61 |.1 and l|ater tha|
|00004320| 74 20 77 69 6c 6c 20 68 | 65 6c 70 20 70 72 6f 74 |t will h|elp prot|
|00004330| 65 63 74 20 79 6f 75 72 | 20 52 50 43 20 64 61 65 |ect your| RPC dae|
|00004340| 6d 6f 6e 73 2e 0d 20 20 | 79 70 73 6e 61 72 66 2e |mons.. |ypsnarf.|
|00004350| 63 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |c. | |
|00004360| 20 20 54 68 69 73 20 68 | 61 6e 64 79 20 6c 69 74 | This h|andy lit|
|00004370| 74 6c 65 20 70 72 6f 67 | 72 61 6d 20 77 69 6c 6c |tle prog|ram will|
|00004380| 20 67 65 74 20 79 6f 75 | 20 79 70 20 64 6f 6d 61 | get you| yp doma|
|00004390| 69 6e 20 6e 61 6d 65 73 | 2c 20 79 70 20 6d 61 70 |in names|, yp map|
|000043a0| 73 2c 20 61 6e 64 20 79 | 70 20 6d 61 70 6c 69 73 |s, and y|p maplis|
|000043b0| 74 73 2e 0d 20 20 59 50 | 58 0d 20 20 20 20 20 20 |ts.. YP|X. |
|000043c0| 20 20 20 20 20 20 20 20 | 20 20 59 50 58 20 67 75 | | YPX gu|
|000043d0| 65 73 73 65 73 20 4e 49 | 53 20 64 6f 6d 61 69 6e |esses NI|S domain|
|000043e0| 20 6e 61 6d 65 73 2e 59 | 50 58 20 77 69 6c 6c 20 | names.Y|PX will |
|000043f0| 65 78 74 72 61 63 74 20 | 74 68 65 20 6d 61 70 73 |extract |the maps|
|00004400| 20 64 69 72 65 63 74 6c | 79 20 66 72 6f 6d 20 64 | directl|y from d|
|00004410| 6f 6d 61 69 6e 73 2e 0d | 20 20 66 74 70 2d 73 63 |omains..| ftp-sc|
|00004420| 61 6e 2e 63 0d 20 20 20 | 20 20 20 20 20 20 20 20 |an.c. | |
|00004430| 20 20 20 20 20 54 68 69 | 73 20 70 72 6f 67 72 61 | Thi|s progra|
|00004440| 6d 20 65 78 70 6c 6f 69 | 74 73 20 74 68 65 20 66 |m exploi|ts the f|
|00004450| 74 70 20 70 72 6f 74 6f | 63 6f 6c 20 74 6f 20 6c |tp proto|col to l|
|00004460| 65 74 20 79 6f 75 20 73 | 63 61 6e 20 73 65 72 76 |et you s|can serv|
|00004470| 69 63 65 73 20 6f 6e 20 | 66 69 72 65 77 61 6c 6c |ices on |firewall|
|00004480| 73 2e 0d 20 20 72 64 69 | 73 74 2d 65 78 2e 63 0d |s.. rdi|st-ex.c.|
|00004490| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|000044a0| 54 68 69 73 20 77 69 6c | 6c 20 77 72 69 74 65 20 |This wil|l write |
|000044b0| 70 61 73 74 20 61 20 62 | 75 66 66 65 72 2c 20 73 |past a b|uffer, s|
|000044c0| 74 72 61 69 67 68 74 20 | 6f 6e 74 6f 20 74 68 65 |traight |onto the|
|000044d0| 20 73 74 61 63 6b 2c 20 | 67 69 76 69 6e 67 20 61 | stack, |giving a|
|000044e0| 20 72 6f 6f 74 20 73 68 | 65 6c 6c 20 6f 6e 20 46 | root sh|ell on F|
|000044f0| 72 65 65 42 53 44 2e 0d | 20 20 74 74 79 77 61 74 |reeBSD..| ttywat|
|00004500| 63 68 65 72 2d 31 2e 31 | 62 2e 74 67 7a 0d 20 20 |cher-1.1|b.tgz. |
|00004510| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 74 74 | | tt|
|00004520| 79 77 61 74 63 68 65 72 | 20 6c 65 74 73 20 61 20 |ywatcher| lets a |
|00004530| 75 73 65 72 20 6d 6f 6e | 69 74 6f 72 20 61 6e 64 |user mon|itor and|
|00004540| 20 69 6e 74 65 72 61 63 | 74 20 77 69 74 68 20 65 | interac|t with e|
|00004550| 76 65 72 79 20 74 74 79 | 20 6f 6e 20 74 68 65 20 |very tty| on the |
|00004560| 73 79 73 74 65 6d 2e 0d | 20 20 73 70 6c 69 74 76 |system..| splitv|
|00004570| 74 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |t.c. | |
|00004580| 20 20 20 20 41 6e 20 6f | 6c 64 65 72 20 65 78 70 | An o|lder exp|
|00004590| 6c 6f 69 74 20 66 6f 72 | 20 4c 69 6e 75 78 20 74 |loit for| Linux t|
|000045a0| 68 61 74 20 6f 76 65 72 | 77 72 69 74 65 73 20 61 |hat over|writes a|
|000045b0| 20 62 75 66 66 65 72 20 | 69 6e 20 2f 75 73 72 2f | buffer |in /usr/|
|000045c0| 62 69 6e 2f 73 70 6c 69 | 74 76 74 2c 20 67 69 76 |bin/spli|tvt, giv|
|000045d0| 69 6e 67 20 72 6f 6f 74 | 2e 0d 20 20 6d 6f 75 6e |ing root|.. moun|
|000045e0| 74 2d 65 78 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |t-ex.c. | |
|000045f0| 20 20 20 20 20 20 20 41 | 6c 6c 20 4c 69 6e 75 78 | A|ll Linux|
|00004600| 20 76 65 72 73 69 6f 6e | 73 20 61 72 65 20 76 75 | version|s are vu|
|00004610| 6c 6e 65 72 61 62 6c 65 | 20 74 6f 20 74 68 69 73 |lnerable| to this|
|00004620| 20 62 75 66 66 65 72 20 | 6f 76 65 72 66 6c 6f 77 | buffer |overflow|
|00004630| 20 61 74 74 61 63 6b 20 | 6f 6e 20 73 75 69 64 20 | attack |on suid |
|00004640| 6d 6f 75 6e 74 2e 0d 20 | 20 70 65 72 6c 2d 65 78 |mount.. | perl-ex|
|00004650| 2e 73 68 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.sh. | |
|00004660| 20 20 20 20 70 65 72 6c | 2d 65 78 2e 73 68 20 69 | perl|-ex.sh i|
|00004670| 73 20 61 20 73 69 6d 70 | 6c 65 20 6c 69 74 74 6c |s a simp|le littl|
|00004680| 65 20 73 70 65 72 6c 20 | 73 63 72 69 70 74 20 74 |e sperl |script t|
|00004690| 68 61 74 20 67 69 76 65 | 73 20 79 6f 75 20 61 20 |hat give|s you a |
|000046a0| 72 6f 6f 74 20 73 68 65 | 6c 6c 20 76 69 61 20 73 |root she|ll via s|
|000046b0| 75 69 64 70 65 72 6c 2e | 0d 20 20 73 6e 64 6d 61 |uidperl.|. sndma|
|000046c0| 69 6c 38 2e 38 2e 34 2e | 74 78 74 0d 20 20 20 20 |il8.8.4.|txt. |
|000046d0| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|000046e0| 20 77 69 6c 6c 20 65 78 | 70 6c 61 69 6e 20 68 6f | will ex|plain ho|
|000046f0| 77 20 74 6f 20 65 78 70 | 6c 6f 69 74 20 73 65 6e |w to exp|loit sen|
|00004700| 64 6d 61 69 6c 20 76 65 | 72 73 69 6f 6e 20 38 2e |dmail ve|rsion 8.|
|00004710| 38 2e 34 20 74 6f 20 67 | 65 74 20 72 6f 6f 74 20 |8.4 to g|et root |
|00004720| 61 63 63 65 73 73 2e 0d | 20 20 6d 6f 64 5f 6c 64 |access..| mod_ld|
|00004730| 74 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |t.c. | |
|00004740| 20 20 20 20 47 69 76 65 | 73 20 61 63 63 65 73 73 | Give|s access|
|00004750| 20 74 6f 20 61 6c 6c 20 | 6f 66 20 4c 69 6e 75 78 | to all |of Linux|
|00004760| 27 73 20 6c 69 6e 65 61 | 72 20 6d 65 6d 6f 72 79 |'s linea|r memory|
|00004770| 20 74 6f 20 75 73 65 72 | 20 70 72 6f 63 65 73 73 | to user| process|
|00004780| 65 73 20 61 74 20 77 69 | 6c 6c 2c 20 61 6e 64 20 |es at wi|ll, and |
|00004790| 74 68 75 73 20 72 6f 6f | 74 2e 0d 20 20 64 69 70 |thus roo|t.. dip|
|000047a0| 45 78 70 6c 6f 69 74 2e | 63 0d 20 20 20 20 20 20 |Exploit.|c. |
|000047b0| 20 20 20 20 20 20 20 20 | 20 20 4c 69 6e 75 78 20 | | Linux |
|000047c0| 64 69 70 20 45 78 70 6c | 6f 69 74 2e 20 4f 76 65 |dip Expl|oit. Ove|
|000047d0| 72 77 72 69 74 65 20 61 | 20 62 75 66 66 65 72 20 |rwrite a| buffer |
|000047e0| 69 6e 20 64 6f 5f 63 68 | 61 74 6b 65 79 28 29 2c |in do_ch|atkey(),|
|000047f0| 20 74 68 75 73 20 67 69 | 76 69 6e 67 20 79 6f 75 | thus gi|ving you|
|00004800| 20 61 20 72 6f 6f 74 20 | 73 68 65 6c 6c 2e 0d 20 | a root |shell.. |
|00004810| 20 72 65 78 65 63 73 63 | 61 6e 2e 74 78 74 0d 20 | rexecsc|an.txt. |
|00004820| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 54 | | T|
|00004830| 68 65 20 72 65 78 65 63 | 64 20 63 61 6e 20 62 65 |he rexec|d can be|
|00004840| 20 75 73 65 64 20 65 61 | 73 69 6c 79 20 74 6f 20 | used ea|sily to |
|00004850| 73 63 61 6e 20 74 68 65 | 20 63 6c 69 65 6e 74 20 |scan the| client |
|00004860| 68 6f 73 74 20 66 72 6f | 6d 20 74 68 65 20 73 65 |host fro|m the se|
|00004870| 72 76 65 72 20 68 6f 73 | 74 2e 0d 20 20 72 70 63 |rver hos|t.. rpc|
|00004880| 73 2e 30 31 62 2e 74 61 | 72 2e 67 7a 0d 20 20 20 |s.01b.ta|r.gz. |
|00004890| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 54 68 69 | | Thi|
|000048a0| 73 20 69 73 20 70 72 6f | 67 72 61 6d 20 74 68 61 |s is pro|gram tha|
|000048b0| 74 20 69 73 20 64 65 73 | 69 67 6e 65 64 20 74 6f |t is des|igned to|
|000048c0| 20 73 63 61 6e 20 73 75 | 62 6e 65 74 73 20 66 6f | scan su|bnets fo|
|000048d0| 72 20 72 70 63 20 73 65 | 72 76 69 63 65 73 2e 0d |r rpc se|rvices..|
|000048e0| 20 20 72 78 76 74 45 78 | 70 6c 6f 69 74 2e 74 78 | rxvtEx|ploit.tx|
|000048f0| 74 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |t. | |
|00004900| 20 20 45 78 70 6c 6f 69 | 74 73 20 61 20 70 6f 70 | Exploi|ts a pop|
|00004910| 65 6e 28 29 20 63 61 6c | 6c 20 69 73 73 75 65 64 |en() cal|l issued|
|00004920| 20 62 79 20 72 78 76 74 | 20 6f 6e 20 4c 69 6e 75 | by rxvt| on Linu|
|00004930| 78 20 6d 61 63 68 69 6e | 65 73 2c 20 74 68 75 73 |x machin|es, thus|
|00004940| 20 67 69 76 69 6e 67 20 | 61 20 72 6f 6f 74 20 73 | giving |a root s|
|00004950| 68 65 6c 6c 2e 0d 20 20 | 6e 66 73 62 75 67 2e 63 |hell.. |nfsbug.c|
|00004960| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00004970| 20 44 65 6d 6f 6e 73 74 | 61 74 65 73 20 61 20 73 | Demonst|ates a s|
|00004980| 65 63 75 72 69 74 79 20 | 70 72 6f 62 6c 65 6d 20 |ecurity |problem |
|00004990| 69 6e 20 75 6e 66 73 64 | 20 67 75 65 73 73 69 6e |in unfsd| guessin|
|000049a0| 67 20 74 68 65 20 66 69 | 6c 65 20 68 61 6e 64 6c |g the fi|le handl|
|000049b0| 65 20 6f 66 20 74 68 65 | 20 72 6f 6f 74 20 46 53 |e of the| root FS|
|000049c0| 2e 0d 20 20 61 62 75 73 | 65 2e 74 78 74 0d 20 20 |.. abus|e.txt. |
|000049d0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 41 20 | | A |
|000049e0| 4c 69 6e 75 78 20 65 78 | 70 6c 6f 69 74 20 66 6f |Linux ex|ploit fo|
|000049f0| 72 20 52 65 64 20 48 61 | 74 20 32 2e 31 2e 20 54 |r Red Ha|t 2.1. T|
|00004a00| 68 69 73 20 67 69 76 65 | 73 20 61 20 72 6f 6f 74 |his give|s a root|
|00004a10| 20 73 68 65 6c 6c 20 62 | 79 20 65 78 70 6c 6f 69 | shell b|y exploi|
|00004a20| 74 6e 67 20 61 62 75 73 | 65 2e 63 6f 6e 73 6f 6c |tng abus|e.consol|
|00004a30| 65 2e 0d 20 20 78 74 65 | 72 6d 4f 76 65 72 66 6c |e.. xte|rmOverfl|
|00004a40| 6f 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |o.c. | |
|00004a50| 20 20 20 20 41 20 70 72 | 6f 67 72 61 6d 20 74 68 | A pr|ogram th|
|00004a60| 61 74 20 6f 76 65 72 77 | 72 69 74 65 73 20 61 20 |at overw|rites a |
|00004a70| 62 75 66 66 65 72 20 69 | 6e 20 6c 69 62 58 74 2e |buffer i|n libXt.|
|00004a80| 73 6f 20 77 68 69 6c 65 | 20 78 74 65 72 6d 20 69 |so while| xterm i|
|00004a90| 73 20 73 75 69 64 20 74 | 6f 20 72 6f 6f 74 2e 0d |s suid t|o root..|
|00004aa0| 20 20 72 65 73 6f 6c 76 | 2b 2e 65 78 70 0d 20 20 | resolv|+.exp. |
|00004ab0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 51 75 | | Qu|
|00004ac0| 69 63 6b 20 61 6e 64 20 | 53 69 6d 70 6c 65 20 77 |ick and |Simple w|
|00004ad0| 61 79 20 74 6f 20 72 65 | 61 64 20 74 68 65 20 2f |ay to re|ad the /|
|00004ae0| 65 74 63 2f 73 68 61 64 | 6f 77 20 66 69 6c 65 20 |etc/shad|ow file |
|00004af0| 61 73 20 77 65 6c 6c 20 | 61 73 20 6d 61 6e 79 20 |as well |as many |
|00004b00| 6f 74 68 65 72 20 74 68 | 69 6e 67 73 2e 0d 20 20 |other th|ings.. |
|00004b10| 72 65 73 69 7a 65 45 78 | 70 2e 74 78 74 0d 20 20 |resizeEx|p.txt. |
|00004b20| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 41 6e | | An|
|00004b30| 6f 74 68 65 72 20 52 65 | 64 20 48 61 74 20 32 2e |other Re|d Hat 2.|
|00004b40| 31 20 65 78 70 6c 6f 69 | 74 20 66 6f 72 20 72 65 |1 exploi|t for re|
|00004b50| 73 69 7a 65 63 6f 6e 73 | 20 64 75 65 20 74 6f 20 |sizecons| due to |
|00004b60| 6c 61 63 6b 20 6f 66 20 | 61 62 73 6f 6c 75 74 65 |lack of |absolute|
|00004b70| 20 70 61 74 68 6e 61 6d | 65 73 2e 0d 20 20 71 63 | pathnam|es.. qc|
|00004b80| 72 61 63 6b 2e 74 61 72 | 2e 67 7a 0d 20 20 20 20 |rack.tar|.gz. |
|00004b90| 20 20 20 20 20 20 20 20 | 20 20 20 20 4c 69 6b 65 | | Like|
|00004ba0| 20 63 72 61 63 6b 20 65 | 78 63 65 70 74 20 74 68 | crack e|xcept th|
|00004bb0| 69 73 20 67 69 76 65 73 | 20 69 6e 63 72 65 61 73 |is gives| increas|
|00004bc0| 65 64 20 63 72 61 63 6b | 69 6e 67 20 73 70 65 65 |ed crack|ing spee|
|00004bd0| 64 73 20 61 74 20 74 68 | 65 20 65 78 70 65 6e 73 |ds at th|e expens|
|00004be0| 65 20 6f 66 20 64 69 73 | 6b 20 73 70 61 63 65 2e |e of dis|k space.|
|00004bf0| 0d 20 20 67 70 6d 2d 65 | 78 70 6c 6f 69 74 2e 74 |. gpm-e|xploit.t|
|00004c00| 78 74 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |xt. | |
|00004c10| 20 20 20 54 68 69 73 20 | 77 69 6c 6c 20 67 65 74 | This |will get|
|00004c20| 20 72 6f 6f 74 20 6f 6e | 20 4c 69 6e 75 78 20 73 | root on| Linux s|
|00004c30| 79 73 74 65 6d 73 20 75 | 73 69 6e 67 20 2f 75 73 |ystems u|sing /us|
|00004c40| 72 2f 67 61 6d 65 73 2f | 64 6f 6f 6d 2f 6b 69 6c |r/games/|doom/kil|
|00004c50| 6c 6d 6f 75 73 65 2e 0d | 20 20 70 69 6e 67 66 6c |lmouse..| pingfl|
|00004c60| 6f 6f 64 2e 63 0d 20 20 | 20 20 20 20 20 20 20 20 |ood.c. | |
|00004c70| 20 20 20 20 20 20 54 68 | 69 73 20 70 69 6e 67 73 | Th|is pings|
|00004c80| 20 66 6c 6f 6f 64 73 20 | 61 20 68 6f 73 74 2c 20 | floods |a host, |
|00004c90| 74 68 75 73 20 77 61 73 | 74 69 6e 67 20 62 61 6e |thus was|ting ban|
|00004ca0| 64 77 69 64 74 68 20 61 | 6e 64 20 64 65 6e 79 69 |dwidth a|nd denyi|
|00004cb0| 6e 67 20 73 65 72 76 69 | 63 65 2e 0d 20 20 74 65 |ng servi|ce.. te|
|00004cc0| 6c 6e 65 74 64 20 65 78 | 70 6c 6f 69 74 0d 20 20 |lnetd ex|ploit. |
|00004cd0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00004ce0| 69 73 20 77 69 6c 6c 20 | 63 72 65 61 74 65 20 61 |is will |create a|
|00004cf0| 20 73 68 61 72 65 64 20 | 6c 69 62 72 61 72 79 20 | shared |library |
|00004d00| 74 68 61 74 20 67 69 76 | 65 73 20 61 20 72 6f 6f |that giv|es a roo|
|00004d10| 74 20 73 68 65 6c 6c 20 | 72 65 6d 6f 74 65 6c 79 |t shell |remotely|
|00004d20| 20 6f 72 20 6c 6f 63 61 | 6c 6c 79 2e 0d 20 20 70 | or loca|lly.. p|
|00004d30| 6f 70 33 64 20 65 78 70 | 6c 6f 69 74 0d 20 20 20 |op3d exp|loit. |
|00004d40| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 52 65 61 | | Rea|
|00004d50| 64 20 74 68 65 20 63 6f | 6e 74 65 6e 74 73 20 6f |d the co|ntents o|
|00004d60| 66 20 74 68 65 20 6d 61 | 69 6c 20 73 70 6f 6f 6c |f the ma|il spool|
|00004d70| 20 6f 66 20 61 20 75 73 | 65 72 20 77 68 65 6e 20 | of a us|er when |
|00004d80| 74 68 65 79 20 63 6f 6e | 6e 65 63 74 20 74 6f 20 |they con|nect to |
|00004d90| 69 6e 2e 70 6f 70 64 2e | 0d 20 20 70 6f 70 70 65 |in.popd.|. poppe|
|00004da0| 72 2e 74 78 74 0d 20 20 | 20 20 20 20 20 20 20 20 |r.txt. | |
|00004db0| 20 20 20 20 20 20 53 6f | 6d 65 20 76 65 72 73 69 | So|me versi|
|00004dc0| 6f 6e 73 20 6f 66 20 28 | 71 29 70 6f 70 70 65 72 |ons of (|q)popper|
|00004dd0| 20 66 72 6f 6d 20 71 75 | 61 6c 63 6f 6d 6d 20 61 | from qu|alcomm a|
|00004de0| 6c 6c 6f 77 20 79 6f 75 | 20 74 6f 20 72 65 61 64 |llow you| to read|
|00004df0| 20 6f 74 68 65 72 20 75 | 73 65 72 27 73 20 6d 61 | other u|ser's ma|
|00004e00| 69 6c 2e 0d 20 20 76 69 | 66 2e 74 61 72 2e 67 7a |il.. vi|f.tar.gz|
|00004e10| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00004e20| 20 54 68 69 73 20 63 6f | 64 65 20 6c 65 74 73 20 | This co|de lets |
|00004e30| 79 6f 75 20 68 61 76 65 | 20 6d 75 6c 74 69 70 6c |you have| multipl|
|00004e40| 65 20 49 50 20 61 64 64 | 72 65 73 73 65 73 20 66 |e IP add|resses f|
|00004e50| 6f 72 20 61 20 73 69 6e | 67 6c 65 20 69 6e 74 65 |or a sin|gle inte|
|00004e60| 72 66 61 63 65 2e 0d 20 | 20 61 6d 6f 64 2e 74 61 |rface.. | amod.ta|
|00004e70| 72 2e 67 7a 0d 20 20 20 | 20 20 20 20 20 20 20 20 |r.gz. | |
|00004e80| 20 20 20 20 20 41 6d 6f | 64 6c 6f 61 64 20 69 73 | Amo|dload is|
|00004e90| 20 61 20 74 6f 6f 6c 20 | 77 68 69 63 68 20 61 6c | a tool |which al|
|00004ea0| 6c 6f 77 73 20 74 68 65 | 20 6c 6f 61 64 69 6e 67 |lows the| loading|
|00004eb0| 20 6f 66 20 61 72 62 69 | 74 72 61 72 79 20 63 6f | of arbi|trary co|
|00004ec0| 64 65 20 69 6e 74 6f 20 | 53 75 6e 4f 53 20 6b 65 |de into |SunOS ke|
|00004ed0| 72 6e 65 6c 73 2e 0d 20 | 20 67 65 74 65 74 68 65 |rnels.. | getethe|
|00004ee0| 72 73 31 2e 36 2e 74 67 | 7a 0d 20 20 20 20 20 20 |rs1.6.tg|z. |
|00004ef0| 20 20 20 20 20 20 20 20 | 20 20 67 65 74 74 68 65 | | getthe|
|00004f00| 72 73 20 73 63 61 6e 73 | 20 61 6c 6c 20 61 64 64 |rs scans| all add|
|00004f10| 72 65 73 73 20 6f 6e 20 | 61 6e 20 65 74 68 65 72 |ress on |an ether|
|00004f20| 6e 65 74 20 61 6e 64 20 | 70 72 6f 64 75 63 69 6e |net and |producin|
|00004f30| 67 20 61 20 68 6f 73 74 | 6e 61 6d 65 2f 65 74 68 |g a host|name/eth|
|00004f40| 65 72 6e 65 74 20 6c 69 | 73 74 2e 0d 20 20 63 66 |ernet li|st.. cf|
|00004f50| 65 78 65 63 2e 73 68 0d | 20 20 20 20 20 20 20 20 |exec.sh.| |
|00004f60| 20 20 20 20 20 20 20 20 | 54 68 69 73 20 6c 65 74 | |This let|
|00004f70| 27 73 20 79 6f 75 20 69 | 73 73 75 65 20 61 72 62 |'s you i|ssue arb|
|00004f80| 69 74 72 61 72 79 20 63 | 6f 6d 6d 61 6e 64 73 20 |itrary c|ommands |
|00004f90| 61 73 20 72 6f 6f 74 20 | 6f 6e 20 47 4e 55 20 63 |as root |on GNU c|
|00004fa0| 66 69 6e 67 65 72 64 20 | 31 2e 30 2e 31 2e 0d 20 |fingerd |1.0.1.. |
|00004fb0| 20 4e 46 53 20 50 72 6f | 62 6c 65 6d 73 0d 20 20 | NFS Pro|blems. |
|00004fc0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 53 68 | | Sh|
|00004fd0| 6f 77 73 20 73 6f 6d 65 | 20 70 6f 74 65 6e 74 69 |ows some| potenti|
|00004fe0| 61 6c 20 70 72 6f 62 6c | 65 6d 73 20 77 69 74 68 |al probl|ems with|
|00004ff0| 20 4c 69 6e 75 78 20 69 | 6e 2e 6e 66 73 64 20 63 | Linux i|n.nfsd c|
|00005000| 6f 6e 63 65 72 6e 69 6e | 67 20 72 65 61 64 2d 6f |oncernin|g read-o|
|00005010| 6e 6c 79 20 65 78 70 6f | 72 74 73 2e 0d 20 20 63 |nly expo|rts.. c|
|00005020| 64 72 6f 6d 76 75 6c 6e | 2e 74 78 74 0d 20 20 20 |dromvuln|.txt. |
|00005030| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 49 66 20 | | If |
|00005040| 4c 69 6e 75 78 20 43 44 | 20 69 73 20 6d 6f 75 6e |Linux CD| is moun|
|00005050| 74 65 64 20 77 2f 20 73 | 75 69 64 20 66 6c 61 67 |ted w/ s|uid flag|
|00005060| 2c 20 6f 6c 64 65 72 20 | 73 75 69 64 20 65 78 70 |, older |suid exp|
|00005070| 6c 6f 69 74 73 20 77 69 | 6c 6c 20 77 6f 72 6b 20 |loits wi|ll work |
|00005080| 6f 6e 20 6c 69 76 65 20 | 66 69 6c 65 73 79 73 74 |on live |filesyst|
|00005090| 65 6d 2e 0d 20 20 76 69 | 78 69 65 2e 63 0d 20 20 |em.. vi|xie.c. |
|000050a0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 4f 6e | | On|
|000050b0| 20 52 65 64 68 61 74 20 | 4c 69 6e 75 78 20 73 79 | Redhat |Linux sy|
|000050c0| 73 74 65 6d 73 20 74 68 | 69 73 20 77 69 6c 6c 20 |stems th|is will |
|000050d0| 6f 76 65 72 77 72 69 74 | 65 20 61 20 62 75 66 66 |overwrit|e a buff|
|000050e0| 65 72 20 69 6e 20 63 72 | 6f 6e 74 61 62 2c 20 74 |er in cr|ontab, t|
|000050f0| 68 75 73 20 67 69 76 69 | 6e 67 20 72 6f 6f 74 2e |hus givi|ng root.|
|00005100| 0d 20 20 6c 69 6e 73 6e | 69 66 66 65 72 2e 63 0d |. linsn|iffer.c.|
|00005110| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00005120| 54 68 69 73 20 69 73 20 | 61 20 73 69 6d 70 6c 65 |This is |a simple|
|00005130| 20 4c 69 6e 75 78 20 53 | 6e 69 66 66 65 72 20 74 | Linux S|niffer t|
|00005140| 68 61 74 20 73 68 6f 77 | 73 20 79 6f 75 20 69 6e |hat show|s you in|
|00005150| 63 6f 6d 69 6e 67 20 54 | 43 50 20 70 61 63 6b 65 |coming T|CP packe|
|00005160| 74 73 20 6f 6e 20 6d 6f | 73 74 20 70 6f 72 74 73 |ts on mo|st ports|
|00005170| 2e 0d 20 20 72 73 68 64 | 5f 70 72 6f 62 6c 65 6d |.. rshd|_problem|
|00005180| 2e 74 78 74 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.txt. | |
|00005190| 20 20 20 20 20 59 6f 75 | 20 63 61 6e 20 66 69 67 | You| can fig|
|000051a0| 75 72 65 20 6f 75 74 20 | 76 61 6c 69 64 20 75 73 |ure out |valid us|
|000051b0| 65 72 6e 61 6d 65 73 20 | 62 79 20 65 78 61 6d 69 |ernames |by exami|
|000051c0| 6e 69 6e 67 20 74 68 65 | 20 72 65 73 70 6f 6e 73 |ning the| respons|
|000051d0| 65 20 66 72 6f 6d 20 69 | 6e 2e 72 73 68 64 2e 0d |e from i|n.rshd..|
|000051e0| 20 20 6c 69 6e 75 78 5f | 73 6e 69 66 66 65 72 2e | linux_|sniffer.|
|000051f0| 63 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |c. | |
|00005200| 20 20 41 6e 6f 74 68 65 | 72 20 4c 69 6e 75 78 20 | Anothe|r Linux |
|00005210| 73 6e 69 66 66 65 72 20 | 6d 75 63 68 20 6c 69 6b |sniffer |much lik|
|00005220| 65 20 74 68 65 20 6f 6e | 65 20 61 62 6f 76 65 2e |e the on|e above.|
|00005230| 20 53 68 6f 77 73 20 6d | 6f 72 65 20 64 65 74 61 | Shows m|ore deta|
|00005240| 69 6c 65 64 20 54 43 50 | 20 69 6e 66 6f 2e 0d 20 |iled TCP| info.. |
|00005250| 20 53 6f 6c 32 2e 34 43 | 6f 72 65 2e 74 78 74 0d | Sol2.4C|ore.txt.|
|00005260| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00005270| 53 6f 6c 61 72 69 73 20 | 32 2e 34 20 65 78 70 6c |Solaris |2.4 expl|
|00005280| 6f 69 74 20 74 68 61 74 | 20 61 6c 6c 6f 77 73 20 |oit that| allows |
|00005290| 79 6f 75 20 74 6f 20 6f | 76 65 72 77 72 69 74 65 |you to o|verwrite|
|000052a0| 20 66 69 6c 65 73 20 77 | 68 65 6e 20 61 20 73 75 | files w|hen a su|
|000052b0| 69 64 20 70 72 6f 67 2e | 20 63 6f 72 65 20 64 75 |id prog.| core du|
|000052c0| 6d 70 73 2e 0d 20 20 53 | 6f 6c 41 64 6d 74 6f 6f |mps.. S|olAdmtoo|
|000052d0| 6c 2e 74 78 74 0d 20 20 | 20 20 20 20 20 20 20 20 |l.txt. | |
|000052e0| 20 20 20 20 20 20 4f 6e | 20 53 6f 6c 61 72 69 73 | On| Solaris|
|000052f0| 20 32 2e 35 2c 20 74 68 | 65 20 41 64 6d 69 6e 74 | 2.5, th|e Admint|
|00005300| 6f 6f 6c 20 63 61 6e 20 | 62 65 20 75 73 65 64 20 |ool can |be used |
|00005310| 74 6f 20 63 72 65 61 74 | 65 20 61 20 77 72 69 74 |to creat|e a writ|
|00005320| 65 61 62 6c 65 20 2f 2e | 72 68 6f 73 74 73 20 66 |eable /.|rhosts f|
|00005330| 69 6c 65 2e 0d 20 20 53 | 59 4e 70 61 63 6b 65 74 |ile.. S|YNpacket|
|00005340| 2e 74 67 7a 0d 20 20 20 | 20 20 20 20 20 20 20 20 |.tgz. | |
|00005350| 20 20 20 20 20 46 6c 6f | 6f 64 73 20 61 20 70 6f | Flo|ods a po|
|00005360| 72 74 20 77 69 74 68 20 | 54 43 50 20 70 61 63 6b |rt with |TCP pack|
|00005370| 65 74 73 20 77 69 74 68 | 20 74 68 65 20 53 59 4e |ets with| the SYN|
|00005380| 20 62 69 74 20 74 75 72 | 6e 65 64 20 6f 6e 20 63 | bit tur|ned on c|
|00005390| 61 75 73 69 6e 67 20 69 | 6e 65 74 64 20 74 6f 20 |ausing i|netd to |
|000053a0| 73 65 67 6d 65 6e 74 2e | 0d 20 20 6c 6f 67 69 6e |segment.|. login|
|000053b0| 5f 74 72 6f 6a 61 6e 2e | 63 0d 20 20 20 20 20 20 |_trojan.|c. |
|000053c0| 20 20 20 20 20 20 20 20 | 20 20 41 20 6c 6f 67 69 | | A logi|
|000053d0| 6e 20 74 72 6f 6a 61 6e | 20 70 72 6f 67 72 61 6d |n trojan| program|
|000053e0| 20 74 6f 20 62 65 20 72 | 75 6e 20 61 74 20 74 68 | to be r|un at th|
|000053f0| 65 20 63 6f 6e 73 6f 6c | 65 20 74 6f 20 67 65 74 |e consol|e to get|
|00005400| 20 6f 74 68 65 72 20 75 | 73 65 72 27 73 20 70 61 | other u|ser's pa|
|00005410| 73 73 77 6f 72 64 73 2e | 0d 20 20 70 68 66 2e 63 |sswords.|. phf.c|
|00005420| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00005430| 20 41 20 71 75 69 63 6b | 20 61 6e 64 20 65 61 73 | A quick| and eas|
|00005440| 79 20 74 6f 20 73 63 61 | 6e 20 66 6f 72 20 68 6f |y to sca|n for ho|
|00005450| 73 74 73 20 74 68 61 74 | 20 73 74 69 6c 6c 20 68 |sts that| still h|
|00005460| 61 76 65 20 74 68 65 20 | 70 68 66 20 62 75 67 20 |ave the |phf bug |
|00005470| 77 68 69 63 68 20 67 69 | 76 65 73 20 2f 65 74 63 |which gi|ves /etc|
|00005480| 2f 70 61 73 73 77 64 2e | 0d 20 20 70 68 66 70 72 |/passwd.|. phfpr|
|00005490| 6f 62 65 2e 70 6c 0d 20 | 20 20 20 20 20 20 20 20 |obe.pl. | |
|000054a0| 20 20 20 20 20 20 20 54 | 68 69 73 20 74 72 69 65 | T|his trie|
|000054b0| 73 20 74 6f 20 66 69 6e | 64 20 6f 75 74 20 61 73 |s to fin|d out as|
|000054c0| 20 6d 75 63 68 20 69 6e | 66 6f 72 6d 61 74 69 6f | much in|formatio|
|000054d0| 6e 20 61 62 6f 75 74 20 | 74 68 65 20 70 65 72 73 |n about |the pers|
|000054e0| 6f 6e 20 63 61 6c 6c 69 | 6e 67 20 70 68 66 20 61 |on calli|ng phf a|
|000054f0| 73 20 70 6f 73 73 69 62 | 6c 65 2e 0d 20 20 53 59 |s possib|le.. SY|
|00005500| 4e 57 61 74 63 68 2e 74 | 61 72 2e 67 7a 0d 20 20 |NWatch.t|ar.gz. |
|00005510| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 68 | | Th|
|00005520| 69 73 20 70 72 6f 67 72 | 61 6d 20 77 61 74 63 68 |is progr|am watch|
|00005530| 65 73 20 66 6f 72 20 54 | 43 50 20 70 61 63 6b 65 |es for T|CP packe|
|00005540| 74 73 20 77 69 74 68 20 | 74 68 65 20 53 59 4e 20 |ts with |the SYN |
|00005550| 62 69 74 20 74 75 72 6e | 65 64 20 6f 6e 2e 0d 20 |bit turn|ed on.. |
|00005560| 20 70 69 6e 67 6c 6f 67 | 67 65 72 2e 74 61 72 2e | pinglog|ger.tar.|
|00005570| 67 7a 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |gz. | |
|00005580| 20 20 20 4c 6f 67 73 20 | 61 6c 6c 20 49 43 4d 50 | Logs |all ICMP|
|00005590| 20 70 61 63 6b 65 74 73 | 20 74 6f 20 61 20 6c 6f | packets| to a lo|
|000055a0| 67 20 66 69 6c 65 20 73 | 6f 20 79 6f 75 20 63 61 |g file s|o you ca|
|000055b0| 6e 20 73 65 65 20 77 68 | 6f 20 69 73 20 70 69 6e |n see wh|o is pin|
|000055c0| 67 20 66 6c 6f 6f 64 69 | 6e 67 20 79 6f 75 2e 0d |g floodi|ng you..|
|000055d0| 20 20 73 63 72 65 65 6e | 2e 74 78 74 0d 20 20 20 | screen|.txt. |
|000055e0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 4f 6e 20 | | On |
|000055f0| 42 53 44 69 20 73 79 73 | 74 65 6d 73 2c 20 79 6f |BSDi sys|tems, yo|
|00005600| 75 20 63 61 6e 20 75 73 | 65 20 2f 75 73 72 2f 63 |u can us|e /usr/c|
|00005610| 6f 6e 74 72 62 69 2f 62 | 69 6e 2f 73 63 72 65 65 |ontrbi/b|in/scree|
|00005620| 6e 20 74 6f 20 72 65 61 | 64 20 2f 65 74 63 2f 6d |n to rea|d /etc/m|
|00005630| 61 73 74 65 72 2e 70 61 | 73 73 77 64 2e 0d 20 20 |aster.pa|sswd.. |
|00005640| 66 74 70 42 6f 75 6e 63 | 65 41 74 74 61 63 6b 0d |ftpBounc|eAttack.|
|00005650| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|00005660| 49 6d 70 6c 65 6d 65 6e | 74 61 74 69 6f 6e 20 6f |Implemen|tation o|
|00005670| 66 20 74 68 65 20 66 74 | 70 20 42 6f 75 6e 63 65 |f the ft|p Bounce|
|00005680| 20 41 74 74 61 63 6b 20 | 61 6c 6c 6f 77 69 6e 67 | Attack |allowing|
|00005690| 20 79 6f 75 20 74 6f 20 | 61 6e 6f 6e 79 6d 6f 75 | you to |anonymou|
|000056a0| 73 6c 79 20 64 6f 20 74 | 68 69 6e 67 73 2e 0d 20 |sly do t|hings.. |
|000056b0| 20 67 72 61 62 65 6d 2e | 63 0d 20 20 20 20 20 20 | grabem.|c. |
|000056c0| 20 20 20 20 20 20 20 20 | 20 20 41 20 76 65 72 79 | | A very|
|000056d0| 20 73 74 75 70 69 64 2f | 73 69 6d 70 6c 65 20 70 | stupid/|simple p|
|000056e0| 72 6f 67 72 61 6d 20 74 | 6f 20 67 65 74 20 70 61 |rogram t|o get pa|
|000056f0| 73 73 77 6f 72 64 73 20 | 66 72 6f 6d 20 75 73 65 |sswords |from use|
|00005700| 72 73 20 6c 6f 67 67 69 | 6e 67 20 69 6e 20 6f 6e |rs loggi|ng in on|
|00005710| 20 74 68 65 20 63 6f 6e | 73 6f 6c 2e 0d 20 20 74 | the con|sol.. t|
|00005720| 63 70 76 69 65 77 2e 63 | 0d 20 20 20 20 20 20 20 |cpview.c|. |
|00005730| 20 20 20 20 20 20 20 20 | 20 41 6e 6f 74 68 65 72 | | Another|
|00005740| 20 73 6e 69 66 66 65 72 | 20 74 79 70 65 20 70 72 | sniffer| type pr|
|00005750| 6f 67 72 61 6d 20 64 65 | 73 69 67 6e 65 64 20 66 |ogram de|signed f|
|00005760| 6f 72 20 53 75 6e 20 4f | 53 20 34 2e 31 20 61 72 |or Sun O|S 4.1 ar|
|00005770| 63 68 69 74 65 63 74 75 | 72 65 73 20 75 73 69 6e |chitectu|res usin|
|00005780| 67 20 2f 64 65 76 2f 6e | 69 74 2e 0d 20 20 70 63 |g /dev/n|it.. pc|
|00005790| 6e 66 73 64 2e 63 0d 20 | 20 20 20 20 20 20 20 20 |nfsd.c. | |
|000057a0| 20 20 20 20 20 20 20 45 | 78 70 6c 6f 69 74 20 74 | E|xploit t|
|000057b0| 68 61 74 20 61 6c 6c 6f | 77 73 20 6c 6f 63 61 6c |hat allo|ws local|
|000057c0| 20 75 73 65 72 73 20 74 | 6f 20 63 68 6d 6f 64 20 | users t|o chmod |
|000057d0| 61 72 62 69 74 72 61 72 | 79 20 64 69 72 65 63 74 |arbitrar|y direct|
|000057e0| 6f 72 69 65 73 20 6f 6e | 20 68 6f 73 74 73 20 72 |ories on| hosts r|
|000057f0| 75 6e 6e 69 6e 67 20 70 | 63 6e 66 73 64 2e 0d 20 |unning p|cnfsd.. |
|00005800| 20 6e 65 74 63 72 61 66 | 74 2e 74 67 7a 0d 20 20 | netcraf|t.tgz. |
|00005810| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 43 6f | | Co|
|00005820| 6e 74 61 69 6e 73 20 76 | 61 72 69 6f 75 73 20 28 |ntains v|arious (|
|00005830| 61 6e 64 20 6f 6c 64 65 | 72 29 20 77 65 62 20 73 |and olde|r) web s|
|00005840| 65 63 75 72 69 74 79 20 | 69 73 73 75 65 73 20 61 |ecurity |issues a|
|00005850| 6e 64 20 65 78 70 6c 6f | 69 74 73 20 66 72 6f 6d |nd explo|its from|
|00005860| 20 4e 65 74 63 72 61 66 | 74 2e 0d 20 20 73 75 70 | Netcraf|t.. sup|
|00005870| 65 72 66 6f 72 6b 65 72 | 2e 63 0d 20 20 20 20 20 |erforker|.c. |
|00005880| 20 20 20 20 20 20 20 20 | 20 20 20 54 68 69 73 20 | | This |
|00005890| 69 73 20 61 20 73 75 70 | 65 72 63 68 61 72 67 65 |is a sup|ercharge|
|000058a0| 64 20 76 65 72 73 69 6f | 6e 20 6f 66 20 74 68 65 |d versio|n of the|
|000058b0| 20 63 6c 61 73 73 69 63 | 20 66 6f 72 6b 28 29 20 | classic| fork() |
|000058c0| 64 65 6e 69 61 6c 20 6f | 66 20 73 65 72 76 69 63 |denial o|f servic|
|000058d0| 65 20 61 74 74 61 63 6b | 2e 0d 20 20 74 72 69 70 |e attack|.. trip|
|000058e0| 77 69 72 65 2d 31 2e 32 | 2e 74 67 7a 0d 20 20 20 |wire-1.2|.tgz. |
|000058f0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 43 72 65 | | Cre|
|00005900| 61 74 65 73 20 61 20 73 | 69 67 6e 61 74 75 72 65 |ates a s|ignature|
|00005910| 20 6f 66 20 62 69 6e 61 | 72 79 20 66 69 6c 65 73 | of bina|ry files|
|00005920| 2c 20 61 6e 64 20 74 68 | 65 6e 20 63 68 65 63 6b |, and th|en check|
|00005930| 73 20 74 6f 20 73 65 65 | 20 69 66 20 74 68 65 73 |s to see| if thes|
|00005940| 65 20 66 69 6c 65 20 77 | 65 72 65 20 6d 6f 64 69 |e file w|ere modi|
|00005950| 66 69 65 64 2e 0d 20 20 | 74 63 70 72 2d 31 2e 33 |fied.. |tcpr-1.3|
|00005960| 2e 74 61 72 2e 67 7a 0d | 20 20 20 20 20 20 20 20 |.tar.gz.| |
|00005970| 20 20 20 20 20 20 20 20 | 41 20 73 65 74 20 6f 66 | |A set of|
|00005980| 20 70 65 72 6c 20 73 63 | 72 69 70 74 73 20 74 68 | perl sc|ripts th|
|00005990| 61 74 20 65 6e 61 62 6c | 65 20 79 6f 75 20 74 6f |at enabl|e you to|
|000059a0| 20 72 75 6e 20 66 74 70 | 20 61 6e 64 20 74 65 6c | run ftp| and tel|
|000059b0| 6e 65 74 20 63 6f 6d 6d | 61 6e 64 73 20 61 63 72 |net comm|ands acr|
|000059c0| 6f 73 73 20 61 20 66 69 | 72 65 77 61 6c 6c 2e 0d |oss a fi|rewall..|
|000059d0| 20 20 73 79 73 6c 6f 67 | 46 6f 67 67 65 72 2e 63 | syslog|Fogger.c|
|000059e0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|000059f0| 20 54 68 69 73 20 61 6c | 6c 6f 77 73 20 79 6f 75 | This al|lows you|
|00005a00| 20 74 6f 20 77 72 69 74 | 65 20 74 6f 20 73 79 73 | to writ|e to sys|
|00005a10| 74 65 6d 20 6c 6f 67 67 | 69 6e 67 20 66 61 63 69 |tem logg|ing faci|
|00005a20| 6c 69 74 65 73 20 76 69 | 61 20 55 44 50 20 70 61 |lites vi|a UDP pa|
|00005a30| 63 6b 65 74 73 20 74 6f | 20 70 6f 72 74 20 35 31 |ckets to| port 51|
|00005a40| 34 2e 0d 20 20 79 70 62 | 72 65 61 6b 2e 63 0d 20 |4.. ypb|reak.c. |
|00005a50| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 4c | | L|
|00005a60| 65 74 73 20 79 6f 75 20 | 63 68 61 6e 67 65 20 79 |ets you |change y|
|00005a70| 6f 75 72 20 75 73 65 72 | 6e 61 6d 65 2c 20 70 61 |our user|name, pa|
|00005a80| 73 73 77 6f 72 64 2c 20 | 67 65 63 6f 73 2c 20 6f |ssword, |gecos, o|
|00005a90| 72 20 73 68 65 6c 6c 20 | 76 69 61 20 79 70 70 61 |r shell |via yppa|
|00005aa0| 73 73 77 64 20 64 61 65 | 6d 6f 6e 2e 0d 20 20 68 |sswd dae|mon.. h|
|00005ab0| 64 74 72 61 71 2e 63 0d | 20 20 20 20 20 20 20 20 |dtraq.c.| |
|00005ac0| 20 20 20 20 20 20 20 20 | 54 68 69 73 20 72 75 6e | |This run|
|00005ad0| 73 20 61 73 20 61 20 64 | 61 65 6d 6f 6e 20 61 6e |s as a d|aemon an|
|00005ae0| 64 20 70 75 72 70 6f 72 | 74 65 64 6c 79 20 63 72 |d purpor|tedly cr|
|00005af0| 65 61 74 65 73 20 62 61 | 64 20 73 65 63 74 6f 72 |eates ba|d sector|
|00005b00| 73 20 6f 6e 20 61 20 68 | 61 72 64 20 64 72 69 76 |s on a h|ard driv|
|00005b10| 65 2e 0d 20 20 66 69 6e | 67 65 72 5f 61 74 74 61 |e.. fin|ger_atta|
|00005b20| 63 6b 2e 74 78 74 0d 20 | 20 20 20 20 20 20 20 20 |ck.txt. | |
|00005b30| 20 20 20 20 20 20 20 42 | 79 20 72 65 63 75 72 73 | B|y recurs|
|00005b40| 69 76 65 6c 79 20 66 69 | 6e 67 65 72 69 6e 67 20 |ively fi|ngering |
|00005b50| 61 20 68 6f 73 74 2c 20 | 79 6f 75 20 63 61 6e 20 |a host, |you can |
|00005b60| 63 61 75 73 65 20 61 20 | 70 6f 73 73 69 62 6c 65 |cause a |possible|
|00005b70| 20 63 72 61 73 68 20 6f | 66 20 69 6e 2e 66 69 6e | crash o|f in.fin|
|00005b80| 67 65 72 64 2e 0d 20 20 | 6c 6f 67 64 61 65 6d 6f |gerd.. |logdaemo|
|00005b90| 6e 2e 74 61 72 2e 67 7a | 0d 20 20 20 20 20 20 20 |n.tar.gz|. |
|00005ba0| 20 20 20 20 20 20 20 20 | 20 56 65 72 73 69 6f 6e | | Version|
|00005bb0| 20 35 2e 36 20 6f 66 20 | 61 20 73 75 69 74 65 20 | 5.6 of |a suite |
|00005bc0| 6f 66 20 74 63 70 2f 69 | 70 20 70 72 6f 67 72 61 |of tcp/i|p progra|
|00005bd0| 6d 73 20 74 68 61 74 20 | 65 6e 68 61 6e 63 65 20 |ms that |enhance |
|00005be0| 6e 65 74 77 6f 72 6b 20 | 73 79 73 74 65 6d 20 6c |network |system l|
|00005bf0| 6f 67 67 69 6e 67 2e 0d | 20 20 73 75 54 72 6f 6a |ogging..| suTroj|
|00005c00| 61 6e 2e 63 0d 20 20 20 | 20 20 20 20 20 20 20 20 |an.c. | |
|00005c10| 20 20 20 20 20 54 68 69 | 73 20 69 73 20 61 20 72 | Thi|s is a r|
|00005c20| 65 70 6c 61 63 65 6d 65 | 6e 74 20 70 72 6f 67 72 |eplaceme|nt progr|
|00005c30| 61 6d 20 66 6f 72 20 73 | 75 20 74 68 61 74 20 6d |am for s|u that m|
|00005c40| 61 69 6c 73 20 79 6f 75 | 20 77 68 65 6e 20 61 6e |ails you| when an|
|00005c50| 20 61 74 74 65 6d 70 74 | 20 74 6f 20 73 75 20 69 | attempt| to su i|
|00005c60| 73 20 6d 61 64 65 2e 0d | 20 20 73 69 67 75 72 67 |s made..| sigurg|
|00005c70| 2e 63 0d 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.c. | |
|00005c80| 20 20 20 54 68 69 73 20 | 63 6f 64 65 20 61 6c 6c | This |code all|
|00005c90| 6f 77 73 20 75 70 20 74 | 6f 20 6b 69 6c 6c 20 61 |ows up t|o kill a|
|00005ca0| 6e 79 20 70 72 6f 63 65 | 73 73 20 6f 6e 20 4c 69 |ny proce|ss on Li|
|00005cb0| 6e 75 78 20 62 6f 78 65 | 73 20 72 75 6e 6e 69 6e |nux boxe|s runnin|
|00005cc0| 67 20 6f 6c 64 65 72 20 | 6b 65 72 6e 65 6c 73 2e |g older |kernels.|
|00005cd0| 0d 20 20 73 75 73 68 69 | 50 69 6e 67 2e 63 0d 20 |. sushi|Ping.c. |
|00005ce0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 4f | | O|
|00005cf0| 6e 20 53 75 6e 20 34 20 | 70 6c 61 74 66 6f 72 6d |n Sun 4 |platform|
|00005d00| 73 2c 20 74 68 69 73 20 | 74 72 6f 6a 61 6e 20 70 |s, this |trojan p|
|00005d10| 69 6e 67 20 67 69 76 65 | 73 20 79 6f 75 20 61 20 |ing give|s you a |
|00005d20| 72 6f 6f 74 20 73 68 65 | 6c 6c 20 77 68 65 6e 20 |root she|ll when |
|00005d30| 79 6f 75 20 6d 61 6b 65 | 20 61 20 74 72 69 67 67 |you make| a trigg|
|00005d40| 65 72 66 69 6c 65 2e 0d | 20 20 77 65 62 67 61 69 |erfile..| webgai|
|00005d50| 73 2e 74 78 74 0d 20 20 | 20 20 20 20 20 20 20 20 |s.txt. | |
|00005d60| 20 20 20 20 20 20 54 68 | 69 73 20 77 69 6c 6c 20 | Th|is will |
|00005d70| 65 78 70 6c 61 69 6e 20 | 68 6f 77 20 74 6f 20 69 |explain |how to i|
|00005d80| 73 73 75 65 20 73 68 65 | 6c 6c 20 63 6f 6d 6d 61 |ssue she|ll comma|
|00005d90| 6e 64 73 20 72 65 6d 6f | 74 65 6c 79 20 75 73 69 |nds remo|tely usi|
|00005da0| 6e 67 20 2f 63 67 69 2d | 62 69 6e 2f 77 65 62 67 |ng /cgi-|bin/webg|
|00005db0| 61 69 73 2e 0d 20 20 73 | 75 73 68 69 51 75 6f 74 |ais.. s|ushiQuot|
|00005dc0| 61 2e 63 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |a.c. | |
|00005dd0| 20 20 20 20 41 6e 6f 74 | 68 65 72 20 74 72 6f 6a | Anot|her troj|
|00005de0| 61 6e 20 66 6f 72 20 53 | 75 6e 20 34 20 6d 61 63 |an for S|un 4 mac|
|00005df0| 68 69 6e 65 73 20 74 68 | 61 74 20 69 73 20 74 72 |hines th|at is tr|
|00005e00| 69 67 67 65 72 20 77 69 | 74 68 20 61 20 74 72 69 |igger wi|th a tri|
|00005e10| 67 67 65 72 66 69 6c 65 | 2e 0d 20 20 70 63 73 2e |ggerfile|.. pcs.|
|00005e20| 74 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |tgz. | |
|00005e30| 20 20 20 20 41 20 6c 69 | 62 70 63 61 70 20 62 61 | A li|bpcap ba|
|00005e40| 73 65 64 20 73 6e 69 66 | 66 65 72 20 74 68 61 74 |sed snif|fer that|
|00005e50| 20 73 75 70 70 6f 72 74 | 73 20 6d 75 6c 74 69 70 | support|s multip|
|00005e60| 6c 65 20 69 6e 74 65 72 | 66 61 63 65 73 20 61 6e |le inter|faces an|
|00005e70| 64 20 50 50 50 20 28 77 | 69 74 68 20 6e 6f 20 66 |d PPP (w|ith no f|
|00005e80| 69 6c 74 65 72 69 6e 67 | 29 2e 0d 20 20 73 66 69 |iltering|).. sfi|
|00005e90| 6e 67 65 72 64 2d 31 2e | 38 2e 74 67 7a 0d 20 20 |ngerd-1.|8.tgz. |
|00005ea0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 41 20 | | A |
|00005eb0| 72 65 70 6c 61 63 65 6d | 65 6e 74 20 66 6f 72 20 |replacem|ent for |
|00005ec0| 74 68 65 20 73 74 61 6e | 64 61 72 64 20 75 6e 69 |the stan|dard uni|
|00005ed0| 78 20 66 69 6e 67 65 72 | 20 64 61 65 6d 6f 6e 20 |x finger| daemon |
|00005ee0| 64 65 73 69 67 6e 65 64 | 20 66 6f 72 20 73 65 63 |designed| for sec|
|00005ef0| 75 72 69 74 79 2e 0d 20 | 20 73 6e 69 66 66 74 65 |urity.. | sniffte|
|00005f00| 73 74 2e 63 0d 20 20 20 | 20 20 20 20 20 20 20 20 |st.c. | |
|00005f10| 20 20 20 20 20 73 6e 69 | 66 66 74 65 73 74 2e 63 | sni|fftest.c|
|00005f20| 20 77 69 6c 6c 20 74 72 | 79 20 74 6f 20 74 65 6c | will tr|y to tel|
|00005f30| 6c 20 79 6f 75 20 69 66 | 20 61 20 73 6e 69 66 66 |l you if| a sniff|
|00005f40| 65 72 20 69 73 20 72 75 | 6e 6e 69 6e 67 20 6f 6e |er is ru|nning on|
|00005f50| 20 53 75 6e 20 6d 61 63 | 68 69 6e 65 73 2e 0d 20 | Sun mac|hines.. |
|00005f60| 20 49 50 49 6e 76 65 73 | 74 69 67 61 74 6f 72 2e | IPInves|tigator.|
|00005f70| 74 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |tgz. | |
|00005f80| 20 20 20 20 49 50 49 76 | 65 73 74 69 67 61 74 6f | IPIv|estigato|
|00005f90| 72 20 69 73 20 61 6e 6f | 74 68 65 72 20 73 6e 69 |r is ano|ther sni|
|00005fa0| 66 66 65 72 20 74 68 61 | 74 20 6c 65 74 73 20 79 |ffer tha|t lets y|
|00005fb0| 6f 75 20 77 61 74 63 68 | 20 74 72 61 66 66 69 63 |ou watch| traffic|
|00005fc0| 20 62 65 74 77 65 65 6e | 20 6d 61 63 68 69 6e 65 | between| machine|
|00005fd0| 73 2e 0d 20 20 67 6e 6d | 70 2e 74 61 72 2e 67 7a |s.. gnm|p.tar.gz|
|00005fe0| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00005ff0| 20 47 65 6e 65 72 69 63 | 20 4e 65 74 77 6f 72 6b | Generic| Network|
|00006000| 20 4d 65 73 73 61 67 65 | 20 50 61 73 73 69 6e 67 | Message| Passing|
|00006010| 20 69 73 20 61 20 73 69 | 6d 70 6c 65 20 63 6c 69 | is a si|mple cli|
|00006020| 65 6e 74 20 73 65 72 76 | 65 72 20 6d 65 73 73 61 |ent serv|er messa|
|00006030| 67 69 6e 67 20 73 79 73 | 74 65 6d 2e 0d 20 20 6c |ging sys|tem.. l|
|00006040| 70 72 20 45 78 70 6c 6f | 69 74 0d 20 20 20 20 20 |pr Explo|it. |
|00006050| 20 20 20 20 20 20 20 20 | 20 20 20 54 68 69 73 20 | | This |
|00006060| 73 6d 61 6c 6c 20 70 72 | 6f 67 72 61 6d 20 65 78 |small pr|ogram ex|
|00006070| 70 6c 6f 69 74 20 74 68 | 65 20 73 75 69 64 20 72 |ploit th|e suid r|
|00006080| 6f 6f 74 20 6c 70 72 20 | 70 72 6f 67 72 61 6d 20 |oot lpr |program |
|00006090| 67 69 76 69 6e 67 20 72 | 6f 6f 74 2e 0d 20 20 58 |giving r|oot.. X|
|000060a0| 66 72 65 65 38 36 20 45 | 78 70 6c 6f 69 74 0d 20 |free86 E|xploit. |
|000060b0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 54 | | T|
|000060c0| 68 65 72 65 20 69 73 20 | 61 20 70 72 6f 62 6c 65 |here is |a proble|
|000060d0| 6d 20 77 69 74 68 20 58 | 46 72 65 65 38 36 20 33 |m with X|Free86 3|
|000060e0| 2e 31 2e 32 20 74 68 61 | 74 20 6c 65 74 73 20 79 |.1.2 tha|t lets y|
|000060f0| 6f 75 20 6f 76 65 72 77 | 72 69 74 65 20 66 69 6c |ou overw|rite fil|
|00006100| 65 73 2e 0d 20 20 77 69 | 70 65 68 64 2e 61 73 6d |es.. wi|pehd.asm|
|00006110| 0d 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |. | |
|00006120| 20 41 73 73 65 6d 62 6c | 79 20 4c 61 6e 67 75 61 | Assembl|y Langua|
|00006130| 67 65 20 70 72 6f 67 72 | 61 6d 20 74 68 61 74 20 |ge progr|am that |
|00006140| 77 69 6c 6c 20 72 65 6d | 6f 76 65 20 74 68 65 20 |will rem|ove the |
|00006150| 66 69 72 73 74 20 31 30 | 20 73 65 63 74 6f 72 73 |first 10| sectors|
|00006160| 20 6f 66 20 61 20 68 61 | 72 64 72 69 76 65 2e 0d | of a ha|rdrive..|
|00006170| 20 20 6d 69 6e 69 63 6f | 6d 2e 63 0d 20 20 20 20 | minico|m.c. |
|00006180| 20 20 20 20 20 20 20 20 | 20 20 20 20 54 68 69 73 | | This|
|00006190| 20 69 73 20 61 6e 20 65 | 78 70 6c 6f 69 74 20 66 | is an e|xploit f|
|000061a0| 6f 72 20 6d 69 6e 69 63 | 6f 6d 20 6f 6e 20 4c 69 |or minic|om on Li|
|000061b0| 6e 75 78 20 73 79 73 74 | 65 6d 73 20 74 68 61 74 |nux syst|ems that|
|000061c0| 20 77 69 6c 6c 20 6f 76 | 65 72 77 72 69 74 65 20 | will ov|erwrite |
|000061d0| 61 20 62 75 66 66 65 72 | 2e 0d 20 20 73 61 6d 2e |a buffer|.. sam.|
|000061e0| 74 78 74 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |txt. | |
|000061f0| 20 20 20 20 4f 6e 20 48 | 50 2d 55 58 2c 20 74 68 | On H|P-UX, th|
|00006200| 65 20 53 79 73 74 65 6d | 20 41 64 6d 69 6e 69 73 |e System| Adminis|
|00006210| 74 72 61 74 69 6f 6e 20 | 4d 61 6e 61 67 65 72 20 |tration |Manager |
|00006220| 28 73 61 6d 29 20 63 61 | 6e 20 62 65 20 75 73 65 |(sam) ca|n be use|
|00006230| 64 20 74 6f 20 74 72 75 | 6e 63 61 74 65 20 66 69 |d to tru|ncate fi|
|00006240| 6c 65 73 2e 0d 20 20 44 | 65 6e 69 61 6c 6f 66 53 |les.. D|enialofS|
|00006250| 65 72 76 69 63 65 0d 20 | 20 20 20 20 20 20 20 20 |ervice. | |
|00006260| 20 20 20 20 20 20 20 7a | 69 70 20 66 69 6c 65 20 | z|ip file |
|00006270| 69 6c 6c 75 73 74 72 61 | 74 69 6e 67 20 66 69 76 |illustra|ting fiv|
|00006280| 65 20 73 69 6d 70 6c 65 | 20 64 65 6e 69 61 6c 20 |e simple| denial |
|00006290| 6f 66 20 73 65 72 76 69 | 63 65 20 61 74 74 61 63 |of servi|ce attac|
|000062a0| 6b 73 20 6f 6e 20 61 20 | 75 6e 69 78 2e 0d 20 20 |ks on a |unix.. |
|000062b0| 78 73 70 79 2e 74 61 72 | 2e 67 7a 0d 20 20 20 20 |xspy.tar|.gz. |
|000062c0| 20 20 20 20 20 20 20 20 | 20 20 20 20 78 73 70 79 | | xspy|
|000062d0| 20 69 73 20 61 20 70 72 | 6f 67 72 61 6d 20 74 68 | is a pr|ogram th|
|000062e0| 61 74 20 6d 61 6b 65 73 | 20 6c 6f 67 69 6e 73 20 |at makes| logins |
|000062f0| 61 70 70 65 61 72 20 6f | 6e 20 79 6f 75 72 20 64 |appear o|n your d|
|00006300| 69 73 70 6c 61 79 2e 0d | 20 20 73 63 61 6e 2e 73 |isplay..| scan.s|
|00006310| 68 0d 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |h. | |
|00006320| 20 20 54 68 69 73 20 69 | 73 20 61 20 70 65 72 6c | This i|s a perl|
|00006330| 20 73 63 72 69 70 74 20 | 74 68 61 74 20 73 63 61 | script |that sca|
|00006340| 6e 73 20 73 75 62 6e 65 | 74 73 20 61 6e 64 20 72 |ns subne|ts and r|
|00006350| 65 70 6f 72 74 73 20 69 | 66 20 72 65 78 64 20 6f |eports i|f rexd o|
|00006360| 72 20 79 70 73 65 72 76 | 20 69 73 20 72 75 6e 6e |r ypserv| is runn|
|00006370| 69 6e 67 2e 0d 20 20 78 | 73 63 61 6e 2e 74 61 72 |ing.. x|scan.tar|
|00006380| 2e 67 7a 0d 20 20 20 20 | 20 20 20 20 20 20 20 20 |.gz. | |
|00006390| 20 20 20 20 73 63 61 6e | 73 20 73 75 62 6e 65 74 | scan|s subnet|
|000063a0| 73 20 66 6f 72 20 75 6e | 73 65 63 75 72 65 64 20 |s for un|secured |
|000063b0| 58 20 63 6c 69 65 6e 74 | 73 20 61 6e 64 20 61 75 |X client|s and au|
|000063c0| 74 6f 6d 61 74 69 63 61 | 6c 6c 79 20 6c 6f 67 73 |tomatica|lly logs|
|000063d0| 20 72 65 73 75 6c 74 73 | 2e 0d 20 20 4f 53 46 31 | results|.. OSF1|
|000063e0| 5f 64 78 63 68 70 77 64 | 0d 20 20 20 20 20 20 20 |_dxchpwd|. |
|000063f0| 20 20 20 20 20 20 20 20 | 20 4f 6e 20 4f 53 46 31 | | On OSF1|
+--------+-------------------------+-------------------------+--------+--------+
Only 25.0 KB of data is shown above.
