request for kuang2 uploader for penetration test

• Previous message: Dan Perez: "RE: TCP port 41523"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 4 Jun 2003 18:41:03 -0700 (PDT)
To: pen-test@securityfocus.com

Hello,

I am performing a penetration test for a client with a
large number of windows machines and apparently some
of them are windows 98 and infected with the kuang2
virus. This is both a virus and a trojan.

I have performed an extensive search for information
about this and how to exploit it to demonstrate the
vulnerability to my client, however there does not
appear to be any place on the entire web (as defined
by google and various forums) that one can download
the "uploader" client for this thing. However it
obviously existed, and the attacker is out there with
it.

If anyone has this client portion of the tool, or
details about the handshake/command protocol so I can
write my own client, then please please reply to my
email or this list.

I would be very happy to share unreleased exploits in
return.

Sincerely,
jqp

__________________________________
Do you Yahoo!?
Yahoo! Calendar - Free online calendar with sync to Outlook(TM).
http://calendar.yahoo.com

---------------------------------------------------------------------------
----------------------------------------------------------------------------

• Previous message: Dan Perez: "RE: TCP port 41523"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Error: Too many files are open - have tried everything ... I should charge Apple. ... >> I have a client running a MacOSX 10.3.4 machine in an office that is ... >> There are windows machines in the office that have no problems. ... (microsoft.public.mac.office.word) Re: Forcing Windows XP date and time ... >All Windows machines will, on a schedule, attempt to ... You may want to look at taking control ... How would you recommend I do this? ... On the client I have to use the task manager to terminate ... (microsoft.public.windowsxp.security_admin) Re: sharing files with windows systems was Re: SAMBA setup ... want a Samba server, or is it just to access Windows shares on your ... other systems as a client? ... As far as FTP, you can enable the FTP server on FreeBSD (uncomment the ... first FTP line in /etc/inetd.conf) and use the Windows machines as ... (freebsd-questions) Re: Forcing Windows XP date and time ... Microsoft MVP (Windows Server System: ... MCSE MCDBA ... >>All Windows machines will, on a schedule, attempt to ... >>When the demo application hangs on the client, ... (microsoft.public.windowsxp.security_admin) Re: yahoo chat security ... That said is your current Java version current? ... some buffer overrun capabilities in earlier versions. ... These are not uncommon in the Yahoo ... audio function and the video function of the current client. ... (alt.computer.security)