«
Expand/Collapse
75 items tagged "address"
Related tags:
site [+],
book [+],
php [+],
address book [+],
network [+],
manual entries [+],
code execution [+],
arp scan [+],
arp [+],
address resolution protocol [+],
email [+],
book 6 [+],
network address translation [+],
ip addresses [+],
bar [+],
apple safari [+],
window javascript [+],
window [+],
version 6 [+],
ssl [+],
security vulnerabilities [+],
security advisory [+],
security [+],
privacy risks [+],
novell groupwise [+],
novell [+],
mobile safari [+],
memory corruption [+],
memory [+],
kde [+],
javascript onload [+],
javascript [+],
ip data [+],
ios version [+],
ios [+],
groupwise address book [+],
groupwise [+],
function pointers [+],
file [+],
easy [+],
cross site scripting [+],
corruption [+],
colorsync [+],
cisco ios [+],
bugtraq [+],
arbitrary code execution [+],
apple security [+],
apple mobile [+],
anonip [+],
advisory [+],
webserver version [+],
valid email address [+],
txt [+],
translation [+],
tgz [+],
microsoft [+],
ip address [+],
forgery [+],
facebook [+],
denial of service [+],
cisco [+],
black hat [+],
Software [+],
yuji [+],
xxx [+],
wants [+],
vcf [+],
user [+],
usa [+],
university [+],
ukai [+],
tracked [+],
toulouse [+],
static address [+],
sqli [+],
sql injection [+],
spoofing [+],
shooter [+],
shock [+],
seamonkey [+],
scammer [+],
ryan parmeh [+],
rlo [+],
return [+],
retired [+],
reg in [+],
raber [+],
quietriatt [+],
public address [+],
phpkobo [+],
phone number [+],
personal address book [+],
personal [+],
pdf [+],
partition [+],
overflow [+],
network traffic [+],
network interfaces [+],
nat [+],
multiple [+],
mozilla firefox [+],
mozilla [+],
mister x [+],
mail [+],
mac address [+],
mac [+],
kazaam [+],
jason raber [+],
ipv6 stacks [+],
ipv6 networks [+],
ipv6 address [+],
ipv [+],
ip link [+],
intranet address [+],
internet explorer 8 [+],
internet [+],
information disclosure [+],
import address table [+],
import [+],
host [+],
hacked [+],
goal [+],
firefox [+],
explorer [+],
etc network [+],
e mail address [+],
dhcpcd [+],
developers [+],
derek soeder [+],
denial of service dos [+],
day [+],
d link [+],
contact [+],
cisco ios software [+],
cheatsheet [+],
buffer overflow vulnerability [+],
buffer [+],
brian krumheuer [+],
book group [+],
blunder [+],
authentication [+],
aurora [+],
advanced [+],
address user [+],
address book view [+],
Related [+],
Pentesting [+],
Newbie [+],
Issues [+],
BackTrack [+],
Area [+],
vulnerability [+]
-
-
17:20
»
Packet Storm Security Misc. Files
IPv6 offers a much larger address space than that of its IPv4 counterpart. The standard /64 IPv6 subnets can (in theory) accommodate approximately 1.844 * 10^19 hosts, thus resulting in a much lower host density (#hosts/#addresses) than their IPv4 counterparts. As a result, it is widely assumed that it would take a tremendous effort to perform host scanning attacks against IPv6 networks, and therefore IPv6 host scanning attacks have long been considered unfeasible. This document analyzes the IPv6 address configuration policies implemented in most popular IPv6 stacks, and identifies a number of patterns in the resulting addresses lead to a tremendous reduction in the host address search space, thus dismantling the myth that IPv6 host scanning attacks are unfeasible.
-
-
3:11
»
Packet Storm Security Tools
The goal of IP-Link is to show the relationships between different IP addresses from network traffic capture, thus quickly determining for a given address the IP address with which it communicates the most.
-
-
16:24
»
Packet Storm Security Advisories
Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.
-
16:24
»
Packet Storm Security Recent Files
Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.
-
16:24
»
Packet Storm Security Misc. Files
Apple Security Advisory 2012-02-01-1 - Apple has addressed 48 security vulnerabilities. These issues existed in packages such as Address Book, Apache, CFNetwork, ColorSync, CoreAudio, CoreMedia, CoreText, curl and much more.
-
-
17:07
»
Packet Storm Security Exploits
This bug is triggered when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window()' JavaScript function. This exploit results in a call to an address lower than the heap. The javascript prompt() places the shellcode near where the call operand points to. The module calls prompt() multiple times in separate iframes to place our return address. The module hides the prompts in a popup window behind the main window and then it will spray the heap a second time with the shellcode and point the return address to the heap. It then uses a fairly high address to make this exploit more reliable. IE will crash when the exploit completes. Also, please note that Internet Explorer must allow popups in order to continue exploitation.
-
17:07
»
Packet Storm Security Recent Files
This bug is triggered when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window()' JavaScript function. This exploit results in a call to an address lower than the heap. The javascript prompt() places the shellcode near where the call operand points to. The module calls prompt() multiple times in separate iframes to place our return address. The module hides the prompts in a popup window behind the main window and then it will spray the heap a second time with the shellcode and point the return address to the heap. It then uses a fairly high address to make this exploit more reliable. IE will crash when the exploit completes. Also, please note that Internet Explorer must allow popups in order to continue exploitation.
-
17:07
»
Packet Storm Security Misc. Files
This bug is triggered when the browser handles a JavaScript 'onLoad' handler in conjunction with an improperly initialized 'window()' JavaScript function. This exploit results in a call to an address lower than the heap. The javascript prompt() places the shellcode near where the call operand points to. The module calls prompt() multiple times in separate iframes to place our return address. The module hides the prompts in a popup window behind the main window and then it will spray the heap a second time with the shellcode and point the return address to the heap. It then uses a fairly high address to make this exploit more reliable. IE will crash when the exploit completes. Also, please note that Internet Explorer must allow popups in order to continue exploitation.
-
-
8:21
»
Packet Storm Security Recent Files
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
8:21
»
Packet Storm Security Tools
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
8:21
»
Packet Storm Security Misc. Files
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
-
7:49
»
Packet Storm Security Recent Files
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
7:49
»
Packet Storm Security Tools
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
7:49
»
Packet Storm Security Misc. Files
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
-
-
9:11
»
Packet Storm Security Exploits
This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
-
9:11
»
Packet Storm Security Recent Files
This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
-
9:11
»
Packet Storm Security Misc. Files
This Metasploit module exploits a memory corruption vulnerability within Microsoft's HTML engine (mshtml). When parsing an HTML page containing a specially crafted CSS tag, memory corruption occurs that can lead arbitrary code execution. It seems like Microsoft code inadvertently increments a vtable pointer to point to an unaligned address within the vtable's function pointers. This leads to the program counter being set to the address determined by the address "[vtable+0x30+1]". The particular address depends on the exact version of the mshtml library in use. Since the address depends on the version of mshtml, some versions may not be exploitable. Specifically, those ending up with a program counter value within another module, in kernel space, or just not able to be reached with various memory spraying techniques. Also, since the address is not controllable, it is unlikely to be possible to use ROP to bypass non-executable memory protections.
-
-
17:34
»
Packet Storm Security Recent Files
Anonip replaces all IP addresses in a text file with a seemingly random one in a intelligent way. It is intended to anonymize the sensitive IP data in a file so that this file can be distributed without exposing one to security or privacy risks.
-
17:34
»
Packet Storm Security Tools
Anonip replaces all IP addresses in a text file with a seemingly random one in a intelligent way. It is intended to anonymize the sensitive IP data in a file so that this file can be distributed without exposing one to security or privacy risks.
-
17:34
»
Packet Storm Security Misc. Files
Anonip replaces all IP addresses in a text file with a seemingly random one in a intelligent way. It is intended to anonymize the sensitive IP data in a file so that this file can be distributed without exposing one to security or privacy risks.
-
-
13:00
»
SecuriTeam
The Cisco IOS Software Network Address Translation functionality contains three denial of service (DoS) vulnerabilities.
-
Make your website safer. Use external penetration testing service. First report ready in one hour!
-
-
3:51
»
remote-exploit & backtrack
Hi guys,
I'm using BackTrack4 in my office to run a MySql server for internal testing purposes and it's working fairly well till now with 1 inconvenience that it doesn't autostart. Sometimes I have to shutdown the server and after booting again certain parameters like ip address, mounting a separate HDD partition etc. get reset and I have to manually assign IP, mount partition, start required services like Mysql, SSH again.
Is there any way to avoid that ? That is, to assign the same network configuration, starting of certain services and auto-mounting the partition ?
For setting ip address I tried editing "
/etc/network/interfaces" like this:
Quote:
auto lo
iface lo inet loopback
face eth0 inet static
address 192.168.1.111
netmask 255.255.255.0
network 192.168.1.0
broadcast 192.168.1.255
gateway 192.168.1.1
auto eth1
iface eth1 inet dhcp
<snip>
|
For auto start of services, I edited
rc.local file and added the commands
Quote:
and so on.
But both didn't work. Can someone point out the correct way of doing it ? I read some cryptic (to me) article where they were using scripts to do similar stuff, but all that is beyond me. Even if I could somehow manage to write a script to automatically do all that in case of an unexpected reboot (which I don't know how to :o) how'll that script run by itself automatically ?
-
18:00
»
Packet Storm Security Exploits
When providing a valid email address to Facebook, it appears that there are multiple ways to extract a person's real name and picture.
-
-
4:52
»
remote-exploit & backtrack
hi guys,
I have tried to use windows/browser/ie_aurora.
My internet connection is by a router, so my public IP address is different from the local one.
So when I use ie_aurora it works fine if I use 192.168.1.104 (local intranet address) but if I use my public address like 82.34.XXX.XXX as SRVHOST and LHOST:
msf exploit(ie_aurora) >
[-] Handler failed to bind to 82.34.XXX.XXX:4444
[-] Handler failed to bind to 0.0.0.0:4444
[-] Exploit failed: The address is already in use (0.0.0.0:4444).[*] Server stopped.
do you know how I can start the server if I am under a router????
Thanks,
Mister|x
-
7:42
»
remote-exploit & backtrack
When I try to manually connect to my network all goes well up until
The dhcpcd command.
I never get a ip address assigned. Any idea why this is?
1337day (was: Inj3ct0r, 1337db)
OSVDB Vulnerabilities
Exploit-DB
SecurityFocus Vulnerabilities
Bugtraq
XSSed
Sophos security news
Penetration Testing
BackTrack Linux Forums
Threatpost
SecDocs
carnal0wnage.attackresearch.com
Carnal0wnage
Darknet
The Exploitant
Hack a Day
Wirevolution
7:00