Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:52:04 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=2263508055&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Operating%20System%3A%20Windows%209x%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fos%2F9x%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.2263508055.1338191524.1338191524.1338191524.1%3B%2B__utmz%3D32867617.1338191524.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/107020/libdvdcss-1.2.11.tar.gz http://packetstormsecurity.org/files/107020/libdvdcss-1.2.11.tar.gz http://packetstormsecurity.org/files/107020/libdvdcss-1.2.11.html Wed, 16 Nov 2011 03:57:26 GMT libdvdcss is a cross-platform library for transparent DVD device access with on-the-fly CSS decryption. It currently runs under Linux, FreeBSD, NetBSD, OpenBSD, BSD/OS, Solaris, BeOS, Win95/Win98, Win2k/WinXP, MacOS X, HP-UX, QNX, and OS/2. It is used by libdvdread and most DVD players such as VLC because of its portability and because, unlike similar libraries, it does not require your DVD drive to be region locked. http://packetstormsecurity.org/files/56871/udpflood-v1.0.zip http://packetstormsecurity.org/files/56871/udpflood-v1.0.zip http://packetstormsecurity.org/files/56871/udpflood-v1.0.zip.html Mon, 21 May 2007 04:12:58 GMT UDP Flooder for Windows 95 and above. It can send udp packets with a user specified data, source and destination port. Includes Delphi source code. http://packetstormsecurity.org/files/56866/pingflood-v1.0.zip http://packetstormsecurity.org/files/56866/pingflood-v1.0.zip http://packetstormsecurity.org/files/56866/pingflood-v1.0.zip.html Mon, 21 May 2007 04:12:41 GMT An ICMP Type 8 (ping) flooder for Windows 95 and above. Includes Delphi source code. http://packetstormsecurity.org/files/56863/igmpbomb-v1.4.zip http://packetstormsecurity.org/files/56863/igmpbomb-v1.4.zip http://packetstormsecurity.org/files/56863/igmpbomb-v1.4.zip.html Mon, 21 May 2007 04:12:33 GMT This program sends oversized IGMP packets. This causes bluescreens and crashes Windows 98 boxes. Works with winsock2 (Windows 98 and above). Includes Delphi source code. http://packetstormsecurity.org/files/53399/genie_v17.zip http://packetstormsecurity.org/files/53399/genie_v17.zip http://packetstormsecurity.org/files/53399/genie_v17.zip.html Thu, 04 Jan 2007 04:02:20 GMT Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Version 1.7. http://packetstormsecurity.org/files/45599/genie_v151.zip http://packetstormsecurity.org/files/45599/genie_v151.zip http://packetstormsecurity.org/files/45599/genie_v151.zip.html Wed, 19 Apr 2006 22:00:17 GMT Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Version 1.5.1 http://packetstormsecurity.org/files/44439/genie_v14.zip http://packetstormsecurity.org/files/44439/genie_v14.zip http://packetstormsecurity.org/files/44439/genie_v14.zip.html Wed, 08 Mar 2006 05:43:51 GMT Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Version 1.4 http://packetstormsecurity.org/files/44082/genie_v13.zip http://packetstormsecurity.org/files/44082/genie_v13.zip http://packetstormsecurity.org/files/44082/genie_v13.zip.html Wed, 22 Feb 2006 20:32:33 GMT Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. Version 1.3 http://packetstormsecurity.org/files/43458/genie.zip http://packetstormsecurity.org/files/43458/genie.zip http://packetstormsecurity.org/files/43458/genie.zip.html Sun, 29 Jan 2006 21:32:21 GMT Genie is a simple Telnet backdoor program that spawns on port 1179. Written for Windows 98/NT/XP. http://packetstormsecurity.org/files/34937/urlSpoofMSIE.txt http://packetstormsecurity.org/files/34937/urlSpoofMSIE.txt http://packetstormsecurity.org/files/34937/urlSpoofMSIE.txt.html Fri, 05 Nov 2004 04:03:50 GMT There is a security bug in Microsoft Internet Explorer, which allows to show any faked target-address in the status bar of the window. Tested in Microsoft Internet Explorer 6 SP1 (6.0.2800.1106) with all patches installed on Windows 98. http://packetstormsecurity.org/files/33788/HtmlHelpchm.txt http://packetstormsecurity.org/files/33788/HtmlHelpchm.txt http://packetstormsecurity.org/files/33788/HtmlHelpchm.txt.html Wed, 14 Jul 2004 15:36:00 GMT The HtmlHelp application (hh.exe) in Microsoft windows read a value from a .CHM file to set a length parameter. By setting this to a large value, it is possible to overwrite sections of the heap with attacker supplied values. Affected software includes: Microsoft Windows 98, 98SE, ME, Microsoft Windows NT 4.0, Microsoft Windows 2000 Service Pack 4, Microsoft Windows XP, Microsoft Windows XP Service Pack 1, Microsoft Windows Server 2003. http://packetstormsecurity.org/files/33503/CYSA-0329.txt http://packetstormsecurity.org/files/33503/CYSA-0329.txt http://packetstormsecurity.org/files/33503/CYSA-0329.txt.html Wed, 09 Jun 2004 05:12:48 GMT Cyrillium Security Advisory CYSA-0329 - FoolProof Security 3.9.x for Windows 98/98SE/Me has a vulnerability in the password recovery functionality that allows an attacker to recover the Administrator password using the Control password and password recovery key. Exploit included. http://packetstormsecurity.org/files/33285/WFBE.txt http://packetstormsecurity.org/files/33285/WFBE.txt http://packetstormsecurity.org/files/33285/WFBE.txt.html Sun, 09 May 2004 19:33:15 GMT Write up detailing how to defeat file browsing restrictions on Windows 98 running Novell 3.2.0.0. http://packetstormsecurity.org/files/32624/typsoft110.txt http://packetstormsecurity.org/files/32624/typsoft110.txt http://packetstormsecurity.org/files/32624/typsoft110.txt.html Wed, 04 Feb 2004 20:03:00 GMT TYPSoft FTP Server 1.10 for Windows 9X and WinNT is vulnerable to a denial of service attack when a blank username is supplied. http://packetstormsecurity.org/files/32340/rec16lx.zip http://packetstormsecurity.org/files/32340/rec16lx.zip http://packetstormsecurity.org/files/32340/rec16lx.zip.html Sun, 14 Dec 2003 22:46:32 GMT REC is a portable reverse engineering decompiler which reads an executable file and attempts to produce a C-like representation of the code and data used to build it. It can decompile 386, 68k, PowerPC, and MIPS R3000 programs and recognizes the following file formats: ELF (System V Rel. 4, e.g. Linux, Solaris, etc.), COFF (System V Rel. 3.x, e.g. SCO), PE (Win32 .EXE and .DLL for Microsoft Windows 95 and NT), AOUT (BSD derivatives, e.g. SunOS 4.x), Playstation PS-X (MIPS target only), and raw binary data (via .cmd files). http://packetstormsecurity.org/files/32176/kpr-winkill.c http://packetstormsecurity.org/files/32176/kpr-winkill.c http://packetstormsecurity.org/files/32176/kpr-winkill.c.html Fri, 14 Nov 2003 01:13:50 GMT Microsoft Windows 95/98/98SE denial of service utility that makes use of malformed NETBIOS packets to lock-up and reboot the machine. http://packetstormsecurity.org/files/31700/savant31.txt http://packetstormsecurity.org/files/31700/savant31.txt http://packetstormsecurity.org/files/31700/savant31.txt.html Thu, 25 Sep 2003 02:10:48 GMT The Savant Web Server version 3.1 for Windows 95, 98, ME, NT, and 2000 is remotely vulnerable to a denial of service condition when various malformed GET requests are passed to the server. http://packetstormsecurity.org/files/31597/augustiner.c http://packetstormsecurity.org/files/31597/augustiner.c http://packetstormsecurity.org/files/31597/augustiner.c.html Tue, 09 Sep 2003 03:19:52 GMT Denial of service exploit for Microsoft Windows 98 that floods UDP traffic to random destination ports causing the system to lock up. http://packetstormsecurity.org/files/31584/tellurian.txt http://packetstormsecurity.org/files/31584/tellurian.txt http://packetstormsecurity.org/files/31584/tellurian.txt.html Thu, 04 Sep 2003 03:06:02 GMT Tellurian TFTPDNT server version 1.8 for Windows NT and Windows 9x suffers from a buffer overflow that allows remote attackers to execute arbitrary code. http://packetstormsecurity.org/files/31310/Yahoo-ducky.txt http://packetstormsecurity.org/files/31310/Yahoo-ducky.txt http://packetstormsecurity.org/files/31310/Yahoo-ducky.txt.html Sun, 06 Jul 2003 19:29:49 GMT Yahoo Messenger 5.5 and below suffers from a buffer overflow that was originally discovered and fixed in May of 2002, but has since resurfaced. Systems Affected: Windows NT/2000/SP1/SP2/SP3, Windows ME, Windows 95/98, Windows XP. http://packetstormsecurity.org/files/30832/bisonftp.dos.txt http://packetstormsecurity.org/files/30832/bisonftp.dos.txt http://packetstormsecurity.org/files/30832/bisonftp.dos.txt.html Wed, 19 Feb 2003 08:19:33 GMT BisonFTP v4r2 is a FTP daemon used on Microsoft Windows 9x/NT systems which has a remote denial of service vulnerability if sent long FTP commands, and can be tricked into revealing information about files outside the ftp root. It's not possible to get in contact with the people at http://www.bisonftp.com anymore. I guess a new version will never be released. http://packetstormsecurity.org/files/30829/bison_slap.pl http://packetstormsecurity.org/files/30829/bison_slap.pl http://packetstormsecurity.org/files/30829/bison_slap.pl.html Wed, 19 Feb 2003 07:26:46 GMT BisonFTP v4.r2 remote denial of service exploit in perl. Tested against Windows 98. http://packetstormsecurity.org/files/30755/PlatinumFTP.txt http://packetstormsecurity.org/files/30755/PlatinumFTP.txt http://packetstormsecurity.org/files/30755/PlatinumFTP.txt.html Mon, 27 Jan 2003 17:44:05 GMT PlatinumFTPserver, the server engine that runs as an application on Windows 9x and a service under NT/2K/XP, has a directory traversal vulnerability that allows remote attackers to enter directories that reside outside the bounding FTP root directory. Another vulnerability exists which allows an attacker to commit a DoS against the server. Version affected: 1.0.7. Version Unaffected: 1.0.8. http://packetstormsecurity.org/files/30638/hyperion.2.8.11.txt http://packetstormsecurity.org/files/30638/hyperion.2.8.11.txt http://packetstormsecurity.org/files/30638/hyperion.2.8.11.txt.html Tue, 24 Dec 2002 08:49:25 GMT The Hyperion FTP Server v2.8.11 and below for Windows 95/98/NT/2000 contains a buffer overflow in ftpservx.dll which allows remote code execution. http://packetstormsecurity.org/files/30593/eeye.png.txt http://packetstormsecurity.org/files/30593/eeye.png.txt http://packetstormsecurity.org/files/30593/eeye.png.txt.html Sat, 14 Dec 2002 07:38:50 GMT EEye Security Advisory - During a review of the PNG image format implemented in Microsoft Windows, pngfilt.dll, serious vulnerabilities were discovered related to the interpretation of PNG image data. The more serious bug is a heap overflow which can be exploited to execute code when the malicious PNG image is viewed. IE 5.01-6.0 is vulnerable, along with the IE web control for Outlook, Access 2000, Backoffice, Microsoft Visual Studio .NET 2002, Office 2000, Office XP pro, Project 2002 Professional, Publisher 98, SNA Server 4.0, SQL Server 7.0, Visio 2002, Visual Basic .NET Standard 2002, Visual C, Visual C++ .NET Standard 2002, Visual FoxPro 7.0, Visual Studio 6.0, Windows 2000, Windows 95, Windows 98, NT, and XP. Microsoft advisory is ms02-066.