.:[ packet storm ]:.
                               
trust nothing
trust nothing

 Section:  .. / UNIX / patches  /

Page 1 of 6
<< 1 2 3 4 5 6 >> Files 1 - 25 of 133
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: freeradius-wpe-2.0.2.patch.txt
Description:
 A patch for the popular open-source FreeRADIUS implementation to demonstrate RADIUS impersonation vulnerabilities by Joshua Wright and Brad Antoniewicz, demonstrated at Shmoocon 4.
File Size:36344
Last Modified:Feb 22 20:01:55 2008
MD5 Checksum:6671917d602373d8010fe38de66377e4

 ///  File Name: openssh_backdoor.patch.txt
Description:
 OpenSSH patch tested with versions 4.2p1 and 4.7p1 that allows for a hidden user to login with root permissions.
Author:Andrea Montanari
File Size:2634
Last Modified:Jan 5 19:09:53 2008
MD5 Checksum:44c8ae538d553591fe849702bbc3a732

 ///  File Name: dma-hydra-5.4-src_plus.txt
Description:
 Patch for THC's Hydra that adds a dependency checks for openssl needed for the SIP module, modifies checks for libpq.so for Postgresql module, adds a new module for Netware NCP and for Firebird database.
Author:David Maciejak
File Size:27586
Last Modified:Sep 5 00:55:18 2007
MD5 Checksum:b7ca798d510365fb31d77bb846a0f1f8

 ///  File Name: openssh-logging.patch
Description:
 Backdoor patch for OpenSSH versions 4.4p1, 4.5p1, and 4.6p1 that logs usernames, hosts, and passphrases from login attempts.
Author:Kris Katterjohn
File Size:1744
Last Modified:Mar 26 22:59:37 2007
MD5 Checksum:9432ff425455192fdd65e22f189fdc36

 ///  File Name: silc-join-hmac.patch
Description:
 Patch for silc-server that fixes a flaw allowing for the crash of a network's SILC router when a new channel is created.
Author:Frank Benkstein
File Size:2882
Last Modified:Mar 8 19:21:40 2007
MD5 Checksum:fd65a37d902b51254f56a5516c5c2926

 ///  File Name: CVE-2007-0453.tgz
Description:
 Samba versions 3.0.21 through 3.0.23d suffer from a potential overrun in the gethostbyname() and getipnodebyname() in the nss_winbind.so.1 library on Solaris that can potentially allow for code execution. Patch included.
Author:Olivier Gay
Homepage:http://www.samba.org/
File Size:1777
Related CVE(s):CVE-2007-0453
Last Modified:Feb 6 00:33:25 2007
MD5 Checksum:9d2e2d59f2d09444848d5da2e098f6be

 ///  File Name: snort-covert.txt
Description:
 Snort patch based on the "tcpstatflow" tool and written to be compiled with snort-2.6.1.1 using the stream4 preprocessor. It is designed to detect traffic that is not HTTP / HTTPS / FTP / SMTP, with a reasonable margin of error.
Author:fryxar
File Size:12428
Last Modified:Dec 6 01:42:08 2006
MD5 Checksum:1d850cbbfbd2d2b20aeab7d455b919a8

 ///  File Name: nmap-runtimebadsum.patch
Description:
 Patch for Nmap 4.20RC1 (and some 4.20ALPHA versions) that adds a runtime option to toggle the sending of packets with bad TCP/UDP checksums.
Author:Kris Katterjohn
File Size:1620
Last Modified:Nov 21 22:01:46 2006
MD5 Checksum:46fd3fea42a6a93813bf3e39625bdcef

 ///  File Name: bsd.patch
Description:
 Firewire patch for BSD kernels that fixes an improper length check.
Author:Rodrigo Rubira Branco
Homepage:http://www.kernelhacking.com/rodrigo
Related File:freebsd-firewire.txt
File Size:321
Last Modified:Nov 16 12:13:04 2006
MD5 Checksum:ee54941f2801ae7dffe4bf7236120a89

 ///  File Name: bash-3.1-perassi.patch
Description:
 bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.
Author:Carlo Perassi
Homepage:http://www.honeynet.org/
File Size:4494
Last Modified:Apr 29 06:36:12 2006
MD5 Checksum:c0bf6cdd8108376b555424846f12bba1

 ///  File Name: patch-2.6.16-karp
Description:
 kArp, the Kernel ARP hijacking kernel patch for Linux. Any ethernet driver (including 802.11 drivers) is supported. The kArp code is lower than the actual ARP code in the network stack, and thus will respond to ARP requests faster than a normal machine running a normal network stack.
Author:Don "north" Bailey
Homepage:http://aversion.net/~north/karp/
File Size:18627
Last Modified:Mar 21 20:06:32 2006
MD5 Checksum:649b0938a572c485b9040a1d99922d71

 ///  File Name: xine-lib.formatstring.patch
Description:
 Patch for the xine/gxine CD player that was found susceptible to a remote format string bug. The vulnerable code is found in the xine-lib library that both xine and gxine use. The vulnerable versions are at least xine-lib-0.9.13, 1.0, 1.0.1, 1.0.2 and 1.1.0.
Author:Ulf Harnhammar
Homepage:http://www.debian.org/security/audit/
Related File:xineFormat.txt
File Size:315
Related CVE(s):CAN-2005-2967
Last Modified:Oct 8 14:46:55 2005
MD5 Checksum:cd292167e0ca6e7910e1cf32091e3a27

 ///  File Name: pwdump3_history.patch
Description:
 Patch for pwdump version 3 that adds the functionality of dumping password history hashes.
Homepage:http://www.cqure.net/
File Size:7068
Last Modified:Jul 7 10:04:53 2005
MD5 Checksum:3100f36d5294ad692addd48ed2b272e6

 ///  File Name: pwdump2_history.patch
Description:
 Patch for pwdump version 2 that adds the functionality of dumping password history hashes.
Homepage:http://www.cqure.net/
File Size:5429
Last Modified:Jul 7 10:03:32 2005
MD5 Checksum:781b11600d4165421889eb3b2aca9a8e

 ///  File Name: aspjarPatch.txt
Description:
 Unofficial patch for the ASPjar Guestbook login.asp vulnerability that allows bypassing of the authentication process.
Author:CorryL
Homepage:http://www.x0n3-h4ck.org
File Size:1042
Last Modified:Feb 24 12:11:34 2005
MD5 Checksum:111d3cc507700a25d566fe3b4a0fbaf8

 ///  File Name: apatch-ssh-3.8.1p1.tar.gz
Description:
 OpenSSH v3.8.1p1 patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.
Author:Aion
File Size:4269
Last Modified:Sep 23 02:50:16 2004
MD5 Checksum:918ce431f75cc6896b80217e83d639f9

 ///  File Name: apatch-ssh-3.2.9.1
Description:
 Apatch for ssh v3.2.9.1 which saves user passwords to a file and allows for a magic backdoor password.
Author:Aion
File Size:5712
Last Modified:Sep 23 02:46:27 2004
MD5 Checksum:f90dc9734709086e8beba816124a75d6

 ///  File Name: bash-perassi.patch
Description:
 bup is a patch for bash that modifies the shell to send all user keystrokes via UDP over the network for collection by a sniffer or a syslogd server. It does not depend on syslogd to send the packets. It is part of the Tools/Data_Capture section of The Honeynet Project.
Author:Carlo Perassi
Homepage:http://www.honeynet.org/
File Size:4447
Last Modified:May 25 18:59:48 2004
MD5 Checksum:b07577f07aa49fc5a61988221cb2f836

 ///  File Name: hap-linux-2.2.26-1.diff
Description:
 HAP-Linux is a collection of security related patches which are designed to be applied after Solar Designers Openwall patches are installed. Changes include some extra information in the printks, and the ability to allow hard links to files you don't own which are in your group, and the ability to follow links & pipes in +t directories if they are not world-writable. This is useful for getting various daemons to run chrooted as a non-root user, and some secure drop- directory stuff.
Author:Hank Leininger
Homepage:http://www.TheAIMSGroup.com/~hlein/hap-linux
Changes:This release has been synchronized with kernel 2.2.26 and Openwall 2.2.26-ow1.
File Size:83941
Last Modified:May 1 12:53:16 2004
MD5 Checksum:34ec26c10bb28a3d176c85d2c7f80331

 ///  File Name: init_rpi.txt
Description:
 Whitepaper detailing how to successfully patch the linux kernel in order to allow ptracing /sbin/init, and subsequently inject a connect-back shellcode into the target process. Patch code included.
Author:Christophe Devine
File Size:18196
Last Modified:Dec 30 13:49:58 2003
MD5 Checksum:416c6fffc2174a4c171d7edaeccba127

 ///  File Name: apatch-ssh.tar.gz
Description:
 OpenSSH patchkit that patches both the client and daemon to log all incoming and outgoing logins and passwords, adds a magic password for sshd, can send uuencoded logs outbound via smtp, store passwords to an encrypted logfile, disables logging if the magic password is used, and supports PAM password grabbing by patching openssh monitor.
Author:Aion
File Size:13049
Last Modified:Nov 30 20:48:35 2003
MD5 Checksum:5a531af6ea46702fecf940ff6238ce35

 ///  File Name: pkcs12bf.tar.gz
Description:
 Simple patch for OpenSSL 0.9.7c that adds a PKCS#12 brute-forcing option which takes in a wordlist.
Author:Aion
File Size:1477
Last Modified:Nov 25 00:36:17 2003
MD5 Checksum:f13b90dd9a84af1e68eeccd7760fbcad

 ///  File Name: fp-2.4.22.patch.gz
Description:
 The Linux-kernel security patch for kernel v2.4.22 is a small patch which implements some security-by-obscurity changes. Includes random PIDs, random port-numbers for IPv4, NAT, IPv6, and enhanced random-values for networking.
Author:Folkert van Heusden
Homepage:http://www.vanheusden.com/Linux/sp
File Size:3567
Last Modified:Oct 30 14:12:51 2003
MD5 Checksum:c1d28e0a1038ab27c8fa6729f13eaa85

 ///  File Name: openssh-3.6.1p2-backdoor.patch.gz
Description:
 OpenSSH 3.6.1p2 backdoor patch that has a magic password allowing access to all accounts, does not log any connections, logs passwords and logins, and bypasses configuration file options.
Author:crash
File Size:3211
Last Modified:Jul 14 18:48:44 2003
MD5 Checksum:17229340f981382df92d2627905c2b21

 ///  File Name: 0x333openssh-3.6.1p2.tar.gz
Description:
 Backdoored version of OpenSSH 3.6.1p2 that has a magic password, logs logins and passwords to a specified file, and disables use of the default configuration file.
Author:nsn
Homepage:http://www.0x333.org
File Size:880207
Last Modified:Jul 14 18:45:46 2003
MD5 Checksum:d37d4ed4e23fcba185b0a0b9c4854e3f
 

 ///  Last 10 Files
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· ksplice-0.9.4-src.tar.gz
  4. :· MDVSA-2008-235.txt
  5. :· cambridge-sql.txt
  6. :· verlihub-exec.txt
  7. :· DDIVRT-2008-15.txt
  8. :· openssh-cbc-adv.txt
  9. :· joomlathyme-sql.txt
  10. :· BitDefenderDOS.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· dsa-1668-1.txt
  2. :· wireshark104-dos.txt
  3. :· MDVSA-2008-235.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· ZDI-08-076.txt
  7. :· ZDI-08-075.txt
  8. :· MDVSA-2008-233.txt
  9. :· SSRT080059.txt
  10. :· MDVSA-2008-220-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· ksplice-0.9.4-src.tar.gz
  2. :· fwknop-1.9.9.tar.gz
  3. :· pysumpas-0.2.0.tar.gz
  4. :· framework-3.2.tar.gz
  5. :· tor.uclibc.i686.20081115.iso
  6. :· RFIDIOt-Windows-0.1u.zip
  7. :· RFIDIOt-0.1u.tgz
  8. :· dps-v1.5.tar.gz
  9. :· smbrelay3.zip
  10. :· mptrey.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice