Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:01:03 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1675776359&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Protocol%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fprotocol%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1675776359.1338192063.1338192063.1338192063.1%3B%2B__utmz%3D32867617.1338192063.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/112951/nmap-6.00.tgz http://packetstormsecurity.org/files/112951/nmap-6.00.tgz http://packetstormsecurity.org/files/112951/Nmap-Port-Scanner-6.00.html Tue, 22 May 2012 04:00:28 GMT Nmap is a utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth. In some cases, bypassing firewalls may be required. Not to mention the fact that you may want to scan different protocols (UDP, TCP, ICMP, etc.). Nmap supports Vanilla TCP connect() scanning, TCP SYN (half open) scanning, TCP FIN, Xmas, or NULL (stealth) scanning, TCP ftp proxy (bounce attack) scanning, SYN/FIN scanning using IP fragments (bypasses some packet filters), TCP ACK and Window scanning, UDP raw ICMP port unreachable scanning, ICMP scanning (ping-sweep), TCP Ping scanning, Direct (non portmapper) RPC scanning, Remote OS Identification by TCP/IP Fingerprinting, and Reverse-ident scanning. Nmap also supports a number of performance and reliability features such as dynamic delay time calculations, packet timeout and retransmission, parallel port scanning, detection of down hosts via parallel pings. http://packetstormsecurity.org/files/112881/libssh2-1.4.2.tar.gz http://packetstormsecurity.org/files/112881/libssh2-1.4.2.tar.gz http://packetstormsecurity.org/files/112881/libssh2-C-Library-1.4.2.html Sat, 19 May 2012 01:37:12 GMT libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS, SECSH-USERAUTH, SECSH-CONNECTION, SECSH-ARCH, SECSH-FILEXFER, SECSH-DHGEX, SECSH-NUMBERS, and SECSH-PUBLICKEY. http://packetstormsecurity.org/files/112484/Netzob-0.3.2.tar.gz http://packetstormsecurity.org/files/112484/Netzob-0.3.2.tar.gz http://packetstormsecurity.org/files/112484/Netzob-0.3.2.html Sun, 06 May 2012 02:04:45 GMT Netzob supports the expert in reverse engineering, evaluation, and simulation of communication protocols. Its main goals are to help security evaluators to assess the robustness of proprietary or unknown protocol implementations, simulate realistic communications to test third-party products (IDS, firewalls, etc.), and create an Open Source implementation of a proprietary or unknown protocol. Netzob provides a semi-automatic inferring process, and includes everything necessary to passively learn the vocabulary of a protocol and actively infer its grammar. The learnt protocol can afterward be simulated. Netzob handles text protocols (like HTTP and IRC), fixed field protocols (like IP and TCP), and variable field protocols (like ASN.1-based formats). http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongswan-4.6.3.tar.gz http://packetstormsecurity.org/files/112447/strongSwan-IPsec-Implementation-4.6.3.html Thu, 03 May 2012 22:54:20 GMT strongSwan is a complete IPsec implementation for the Linux, Android, Maemo, FreeBSD, and Mac OS X operating systems. It interoperates with with most other IPsec-based VPN products via the IKEv2 or IKEv1 key exchange protocols. The focus of the strongSwan project is on strong authentication mechanisms using X.509 public key certificates and optional secure storage of private keys on smartcards through a standardized PKCS#11 interface. A rich choice of modular plugins adds additional features like Trusted Network Connect or advanced cryptographical algorithms. http://packetstormsecurity.org/files/112354/RHSA-2012-0533-01.txt http://packetstormsecurity.org/files/112354/RHSA-2012-0533-01.txt http://packetstormsecurity.org/files/112354/Red-Hat-Security-Advisory-2012-0533-01.html Tue, 01 May 2012 21:33:30 GMT Red Hat Security Advisory 2012-0533-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw was found in the way Samba handled certain Local Security Authority Remote Procedure Calls. An authenticated user could use this flaw to issue an RPC call that would modify the privileges database on the Samba server, allowing them to steal the ownership of files and directories that are being shared by the Samba server, and create, delete, and modify user accounts, as well as other Samba server administration tasks. http://packetstormsecurity.org/files/112352/RHSA-2012-0529-01.txt http://packetstormsecurity.org/files/112352/RHSA-2012-0529-01.txt http://packetstormsecurity.org/files/112352/Red-Hat-Security-Advisory-2012-0529-01.html Tue, 01 May 2012 21:32:48 GMT Red Hat Security Advisory 2012-0529-01 - Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP, an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. http://packetstormsecurity.org/files/112350/RHSA-2012-0528-01.txt http://packetstormsecurity.org/files/112350/RHSA-2012-0528-01.txt http://packetstormsecurity.org/files/112350/Red-Hat-Security-Advisory-2012-0528-01.html Tue, 01 May 2012 21:31:39 GMT Red Hat Security Advisory 2012-0528-01 - Red Hat Enterprise MRG is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP, an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. http://packetstormsecurity.org/files/112168/RHSA-2012-0522-01.txt http://packetstormsecurity.org/files/112168/RHSA-2012-0522-01.txt http://packetstormsecurity.org/files/112168/Red-Hat-Security-Advisory-2012-0522-01.html Wed, 25 Apr 2012 18:31:40 GMT Red Hat Security Advisory 2012-0522-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength, general purpose cryptography library. Multiple numeric conversion errors, leading to a buffer overflow, were found in the way OpenSSL parsed ASN.1 data from BIO inputs. Specially-crafted DER encoded data read from a file or other BIO input could cause an application using the OpenSSL library to crash or, potentially, execute arbitrary code. http://packetstormsecurity.org/files/112143/RHSA-2012-0518-01.txt http://packetstormsecurity.org/files/112143/RHSA-2012-0518-01.txt http://packetstormsecurity.org/files/112143/Red-Hat-Security-Advisory-2012-0518-01.html Wed, 25 Apr 2012 02:08:44 GMT Red Hat Security Advisory 2012-0518-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength, general purpose cryptography library. Multiple numeric conversion errors, leading to a buffer overflow, were found in the way OpenSSL parsed ASN.1 data from BIO inputs. Specially-crafted DER encoded data read from a file or other BIO input could cause an application using the OpenSSL library to crash or, potentially, execute arbitrary code. http://packetstormsecurity.org/files/112096/gnutls-3.0.19.tar.xz http://packetstormsecurity.org/files/112096/gnutls-3.0.19.tar.xz http://packetstormsecurity.org/files/112096/GNU-Transport-Layer-Security-Library-3.0.19.html Mon, 23 Apr 2012 19:17:53 GMT GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability. http://packetstormsecurity.org/files/112024/openssl-1.0.1a.tar.gz http://packetstormsecurity.org/files/112024/openssl-1.0.1a.tar.gz http://packetstormsecurity.org/files/112024/OpenSSL-Toolkit-1.0.1a.html Fri, 20 Apr 2012 06:52:00 GMT OpenSSL is a robust, fully featured Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols with full-strength cryptography world-wide. http://packetstormsecurity.org/files/111851/MDVSA-2012-058.txt http://packetstormsecurity.org/files/111851/MDVSA-2012-058.txt http://packetstormsecurity.org/files/111851/Mandriva-Linux-Security-Advisory-2012-058.html Fri, 13 Apr 2012 22:09:17 GMT Mandriva Linux Security Advisory 2012-058 - curl is vulnerable to a SSL CBC IV vulnerability when built to use OpenSSL for the SSL/TLS layer. A work-around has been added to mitigate the problem. curl is vulnerable to a data injection attack for certain protocols through control characters embedded or percent-encoded in URLs. The updated packages have been patched to correct these issues. http://packetstormsecurity.org/files/111837/RHSA-2012-0478-01.txt http://packetstormsecurity.org/files/111837/RHSA-2012-0478-01.txt http://packetstormsecurity.org/files/111837/Red-Hat-Security-Advisory-2012-0478-01.html Fri, 13 Apr 2012 19:35:18 GMT Red Hat Security Advisory 2012-0478-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw in the Samba suite's Perl-based DCE/RPC IDL compiler, used to generate code to handle RPC calls, resulted in multiple buffer overflows in Samba. A remote, unauthenticated attacker could send a specially-crafted RPC request that would cause the Samba daemon to crash or, possibly, execute arbitrary code with the privileges of the root user. http://packetstormsecurity.org/files/111737/RHSA-2012-0466-01.txt http://packetstormsecurity.org/files/111737/RHSA-2012-0466-01.txt http://packetstormsecurity.org/files/111737/Red-Hat-Security-Advisory-2012-0466-01.html Wed, 11 Apr 2012 14:21:17 GMT Red Hat Security Advisory 2012-0466-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw in the Samba suite's Perl-based DCE/RPC IDL compiler, used to generate code to handle RPC calls, resulted in multiple buffer overflows in Samba. A remote, unauthenticated attacker could send a specially-crafted RPC request that would cause the Samba daemon to crash or, possibly, execute arbitrary code with the privileges of the root user. http://packetstormsecurity.org/files/111735/RHSA-2012-0465-01.txt http://packetstormsecurity.org/files/111735/RHSA-2012-0465-01.txt http://packetstormsecurity.org/files/111735/Red-Hat-Security-Advisory-2012-0465-01.html Wed, 11 Apr 2012 14:20:53 GMT Red Hat Security Advisory 2012-0465-01 - Samba is an open-source implementation of the Server Message Block or Common Internet File System protocol, which allows PC-compatible machines to share files, printers, and other information. A flaw in the Samba suite's Perl-based DCE/RPC IDL compiler, used to generate code to handle RPC calls, resulted in multiple buffer overflows in Samba. A remote, unauthenticated attacker could send a specially-crafted RPC request that would cause the Samba daemon to crash or, possibly, execute arbitrary code with the privileges of the root user. http://packetstormsecurity.org/files/111490/gnutls-3.0.18.tar.xz http://packetstormsecurity.org/files/111490/gnutls-3.0.18.tar.xz http://packetstormsecurity.org/files/111490/GNU-Transport-Layer-Security-Library-3.0.18.html Tue, 03 Apr 2012 02:43:37 GMT GnuTLS is a secure communications library implementing the SSL and TLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability. http://packetstormsecurity.org/files/111480/MDVSA-2012-047.txt http://packetstormsecurity.org/files/111480/MDVSA-2012-047.txt http://packetstormsecurity.org/files/111480/Mandriva-Linux-Security-Advisory-2012-047.html Mon, 02 Apr 2012 17:22:00 GMT Mandriva Linux Security Advisory 2012-047 - The ocsp_check function in rlm_eap_tls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies from OCSP responders, which allows remote attackers to bypass authentication by using the EAP-TLS protocol with a revoked X.509 client certificate. The updated packages have been patched to correct this issue. http://packetstormsecurity.org/files/111403/intuithps-retrieval.txt http://packetstormsecurity.org/files/111403/intuithps-retrieval.txt http://packetstormsecurity.org/files/111403/Intuit-Help-System-Protocol-File-Retrieval.html Fri, 30 Mar 2012 23:36:43 GMT Intuit Help System suffers from protocol file retrieval vulnerability. http://packetstormsecurity.org/files/111396/intuithsp-leak.txt http://packetstormsecurity.org/files/111396/intuithsp-leak.txt http://packetstormsecurity.org/files/111396/Intuit-Help-System-Heap-Corruption-Memory-Leak.html Fri, 30 Mar 2012 22:24:47 GMT Intuit Help System suffers from protocol URL heap corruption and memory leak vulnerabilities. http://packetstormsecurity.org/files/111328/cisco-sa-20120328-nat.txt http://packetstormsecurity.org/files/111328/cisco-sa-20120328-nat.txt http://packetstormsecurity.org/files/111328/Cisco-Security-Advisory-20120328-nat.html Thu, 29 Mar 2012 05:00:33 GMT Cisco Security Advisory - The Cisco IOS Software Network Address Translation (NAT) feature contains a denial of service (DoS) vulnerability in the translation of Session Initiation Protocol (SIP) packets. The vulnerability is caused when packets in transit on the vulnerable device require translation on the SIP payload. Cisco has released free software updates that address this vulnerability. A workaround that mitigates the vulnerability is available. http://packetstormsecurity.org/files/111300/netsniff-ng-0.5.6.tar.gz http://packetstormsecurity.org/files/111300/netsniff-ng-0.5.6.tar.gz http://packetstormsecurity.org/files/111300/Netsniff-NG-High-Performance-Sniffer-0.5.6.html Thu, 29 Mar 2012 03:44:52 GMT netsniff-ng is is a free, performant Linux network sniffer for packet inspection. The gain of performance is reached by 'zero-copy' mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace. For this purpose netsniff-ng is libpcap independent, but nevertheless supports the pcap file format for capturing, replaying and performing offline-analysis of pcap dumps. netsniff-ng can be used for protocol analysis, reverse engineering and network debugging. http://packetstormsecurity.org/files/111297/cisco-sa-20120328-rsvp.txt http://packetstormsecurity.org/files/111297/cisco-sa-20120328-rsvp.txt http://packetstormsecurity.org/files/111297/Cisco-Security-Advisory-20120328-rsvp.html Thu, 29 Mar 2012 03:43:40 GMT Cisco Security Advisory - Cisco IOS Software and Cisco IOS XE Software contain a vulnerability in the RSVP feature when used on a device configured with VPN routing and forwarding (VRF) instances. This vulnerability could allow an unauthenticated, remote attacker to cause an interface wedge, which can lead to loss of connectivity, loss of routing protocol adjacency, and other denial of service (DoS) conditions. This vulnerability could be exploited repeatedly to cause an extended DoS condition. A workaround is available to mitigate this vulnerability. Cisco has released free software updates that address this vulnerability. http://packetstormsecurity.org/files/111292/cisco-sa-20120328-msdp.txt http://packetstormsecurity.org/files/111292/cisco-sa-20120328-msdp.txt http://packetstormsecurity.org/files/111292/Cisco-Security-Advisory-20120328-msdp.html Thu, 29 Mar 2012 03:38:33 GMT Cisco Security Advisory - A vulnerability in the Multicast Source Discovery Protocol (MSDP) implementation of Cisco IOS Software and Cisco IOS XE Software could allow a remote, unauthenticated attacker to cause a reload of an affected device. Repeated attempts to exploit this vulnerability could result in a sustained denial of service (DoS) condition. Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are available. http://packetstormsecurity.org/files/111236/RHSA-2012-0429-01.txt http://packetstormsecurity.org/files/111236/RHSA-2012-0429-01.txt http://packetstormsecurity.org/files/111236/Red-Hat-Security-Advisory-2012-0429-01.html Wed, 28 Mar 2012 02:06:51 GMT Red Hat Security Advisory 2012-0429-01 - The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security. A flaw was found in the way GnuTLS decrypted malformed TLS records. This could cause a TLS/SSL client or server to crash when processing a specially-crafted TLS record from a remote TLS/SSL connection peer. A boundary error was found in the gnutls_session_get_data() function. A malicious TLS/SSL server could use this flaw to crash a TLS/SSL client or, possibly, execute arbitrary code as the client, if the client passed a fixed-sized buffer to gnutls_session_get_data() before checking the real size of the session data provided by the server. http://packetstormsecurity.org/files/111234/RHSA-2012-0426-01.txt http://packetstormsecurity.org/files/111234/RHSA-2012-0426-01.txt http://packetstormsecurity.org/files/111234/Red-Hat-Security-Advisory-2012-0426-01.html Wed, 28 Mar 2012 02:05:56 GMT Red Hat Security Advisory 2012-0426-01 - OpenSSL is a toolkit that implements the Secure Sockets Layer and Transport Layer Security protocols, as well as a full-strength, general purpose cryptography library. A NULL pointer dereference flaw was found in the way OpenSSL parsed Secure/Multipurpose Internet Mail Extensions messages. An attacker could use this flaw to crash an application that uses OpenSSL to decrypt or verify S/MIME messages. A flaw was found in the PKCS#7 and Cryptographic Message Syntax implementations in OpenSSL. An attacker could possibly use this flaw to perform a Bleichenbacher attack to decrypt an encrypted CMS, PKCS#7, or S/MIME message by sending a large number of chosen ciphertext messages to a service using OpenSSL and measuring error response times.