[TOOL] BSD-AirTools, WEP Related Tools
From: support@securiteam.comDate: 03/04/02
- Previous message: support@securiteam.com: "[NEWS] Hotline Client Plaintext Password Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: support@securiteam.com To: list@securiteam.com Date: Mon, 4 Mar 2002 20:12:49 +0100 (CET)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
- - promotion
When was the last time you checked your server's security?
How about a monthly report?
http://www.AutomatedScanning.com - Know that you're safe.
- - - - - - - - -
BSD-AirTools, WEP Related Tools
------------------------------------------------------------------------
DETAILS
<http://www.dachb0den.com/projects/bsd-airtools.html> BSD-AirTools is a
package that provides a complete toolset for wireless 802.11b auditing.
Namely, it currently contains a BSD-based WEP cracking application, called
dweputils (as well as kernel patches for NetBSD, OpenBSD, and FreeBSD). It
also contains a curses based ap detection application similar to
netstumbler (dstumbler) that can be used to detect wireless access points
and connected nodes, view signal to noise graphs, and interactively scroll
through scanned ap's and view statistics for each. It also includes a
couple other tools to provide a complete toolset for making use of all 14
of the prism2 debug modes as well as do basic analysis of the
hardware-based link-layer protocols provided by prism2's monitor debug
mode.
BSD-AirTools currently consists of quite a few different tools; they have
individual informational pages that can be viewed below:
* dstumbler v1.0
* dweputils v0.1
* prism2ctl v0.1
* prism2dump v0.01
* bsd source-mods v0.2
ADDITIONAL INFORMATION
The tool can be downloaded from:
<http://www.dachb0den.com/projects/bsd-airtools.html>
http://www.dachb0den.com/projects/bsd-airtools.html
The information has been provided by <mailto:h1kari@dachb0den.com>
h1kari.
========================================
This bulletin is sent to members of the SecuriTeam mailing list.
To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com
====================
====================
DISCLAIMER:
The information in this bulletin is provided "AS IS" without warranty of any kind.
In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.
- Previous message: support@securiteam.com: "[NEWS] Hotline Client Plaintext Password Vulnerability"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
- [EXPL] SLMail PASS Buffer Overflow
... The following exploit code can be used to test your SLMail ... # Discovered
by: Muts # ... The information in this bulletin is provided "AS IS" without warranty
of any kind. ... In no event shall we be liable for any damages whatsoever including direct,
indirect, incidental, consequential, loss of business profits or special damages. ... (Securiteam) - [EXPL] Xsun (Sparc) Local Exploit (RGB_DB)
... struct TREE { ... main(int argc, char *argv) ... The information
in this bulletin is provided "AS IS" without warranty of any kind. ... In no event shall
we be liable for any damages whatsoever including direct, indirect, incidental, consequential,
loss of business profits or special damages. ... (Securiteam) - [UNIX] Posix_getpw* Ignores Safe_mode and Open_basedir Settings
... thus allowing a user to rebuild a complete ... user to know what accounts
have what privileges and what accounts have ... The information in this bulletin is provided
"AS IS" without warranty of any kind. ... In no event shall we be liable for any damages whatsoever
including direct, indirect, incidental, consequential, loss of business profits or special damages. ...
(Securiteam) - [UNIX] php(Reactor) Cross Site Scripting Vulnerability
... Therefore, any user may construct a malicious link, gain ... the $fid and $tid
variables should be integers. ... The information in this bulletin is provided "AS
IS" without warranty of any kind. ... In no event shall we be liable for any damages whatsoever
including direct, indirect, incidental, consequential, loss of business profits or special damages. ...
(Securiteam) - [NEWS] Active! mail Script Execution Vulnerability
... HREF="http://www.transware.co.jp/ ">TransWARECo. is a web-based e-mail ...
malicious <script> tag in the header, the script will be executed upon the ... The
information in this bulletin is provided "AS IS" without warranty of any kind. ... In no
event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential,
loss of business profits or special damages. ... (Securiteam)
