jetlib.sec » Tags » packet-data

Feeds

133444 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

3 items tagged "packet data"

Related tags: zero day [+], vulnerability [+], process [+], code [+], arbitrary code [+], tshark [+], read [+], protocol [+], network protocol analyzer [+], network [+], hacking [+], darknet [+], Tools [+]

• August 19, 2010
• 2:43

  Tshark – Network Protocol Analyzer & Traffic Dumper

   » ‎ Darknet
  Tshark is actually part of the Wireshark package, and has some similar functionality. It does some cool stuff though so I thought it’s worthy of its own post. TShark is a network protocol analyzer. It lets you capture packet data from a live network, or read packets from a previously saved capture file, either printing [...]
  
  Read the full post at darknet.org.uk

  
  

  

  Tags:  protocol network tshark read network-protocol-analyzer packet-data darknet hacking Tools  

• March 16, 2010
• 20:00

  ZDI-10-032.txt

   » ‎ Packet Storm Security Recent Files
  Zero Day Initiative Advisory 10-032 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the serv.exe process which listens by default on TCP port 7210. The process trusts a value from a handshake packet and uses it as a length when copying data to the stack. If provided a malicious value and packet data, this can be leveraged to execute arbitrary code under the context of the SYSTEM user.

  Tags:  code vulnerability process zero-day packet-data arbitrary-code  

• 19:09

  ZDI-10-032.txt

   » ‎ Packet Storm Security Advisories
  Zero Day Initiative Advisory 10-032 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP MaxDB. Authentication is not required to exploit this vulnerability. The specific flaw exists within the serv.exe process which listens by default on TCP port 7210. The process trusts a value from a handshake packet and uses it as a length when copying data to the stack. If provided a malicious value and packet data, this can be leveraged to execute arbitrary code under the context of the SYSTEM user.

  Tags:  code vulnerability process zero-day packet-data arbitrary-code