Cisco IOS HTTP remote exploit

From: FX (fxat_private)
Date: Fri Aug 08 2003 - 10:53:00 PDT

Next message: bugzillaat_private: "[Full-Disclosure] [RHSA-2003:241-01] Updated ddskk packages fix temporary file vulnerability"

Previous message: Zee: "Remote denial of service vulnerability in Meteor FTP Version 1.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi there,

finally released, the exploit for the Cisco IOS HTTP 2GB overflow 
http://www.cisco.com/warp/public/707/cisco-sn-20030730-ios-2gb-get.shtml 
and the IOS 11.x remote sniffer using the bug described here:
http://www.cisco.com/warp/public/707/cisco-sn-20030731-ios-udp-echo.shtml

Exploit: http://www.phenoelit.de/ultimaratio/CiscoCasumEst.tgz
Sniffer: http://www.phenoelit.de/ultimaratio/iosniff.tgz

FX

-- 
         FX           <fxat_private>
      Phenoelit   (http://www.phenoelit.de)
672D 64B2 DE42 FCF7 8A5E E43B C0C1 A242 6D63 B564

Next message: bugzillaat_private: "[Full-Disclosure] [RHSA-2003:241-01] Updated ddskk packages fix temporary file vulnerability"
Previous message: Zee: "Remote denial of service vulnerability in Meteor FTP Version 1.5"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sat Aug 09 2003 - 12:07:45 PDT