Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] Cisco IOS Shellcode Presentation

from [J. Oquendo] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] Cisco IOS Shellcode Presentation
Date: Fri, 29 Jul 2005 17:54:14 -0400 (EDT) 


Correct me if I'm wrong, obviously I wasn't at the presentation, but
Lynns' assertion of an attack (uploading and running things via the
router) is no different from a POC tool released a few years back called
Ultima Ratio http://www.phenoelit.de/ultimaratio/UltimaRatioVegas.c
probably just modified code from what I gather on what I've read thusfar.
Anyhow, as for Cisco's DJ's spinning "it's only an IPv6 thing you can all
go home now...", isn't it humorous to see that IPv6 is supposed to be
"that much more secure". Obviously I wouldn't believe Cisco when they
state its IPv6 based only don't get me wrong, it's funny to see spin.



=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+
J. Oquendo
GPG Key ID 0x97B43D89
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x97B43D89

To conquer the enemy without resorting to war is the most
desirable.  The highest form of generalship is to conquer
the enemy by strategy." - Sun Tzu
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Full-disclosure] Re: Intel Hyperthreading Cache Vulnerability (was: Cisco IOS Shellcode Presentation), Tim
Next by Date:  Re: [Full-disclosure] Cisco IOS Shellcode Presentation, Andrew R. Reiter
Previous by Thread:  Re: [Full-disclosure] Cisco IOS Shellcode Presentation, Ron DuFresne
Next by Thread:  Re: [Full-disclosure] Cisco IOS Shellcode Presentation, Andrew R. Reiter
Indexes:  [Date] [Thread] [Top] [All Lists]