| WIKI | FAQ | Tech FAQ | |
 http://csua.com/feed/ | |
| ||||||
| 7/8 |
| 2005/7/29-8/2 [Computer/Networking] UID:38873 Activity:moderate |
7/28 Anybody have actual details on the Cisco IOS vulnerability? I know
they're trying to quash it but with 'information wants to be free' I
figured a bunch of people must know about it. All I've heard so far
is that it's a remote heap overflow and Cisco's had a patch for months
but doesn't want to roll it out till their next release date. I also
heard a rumor that there's a vulnerability where the attacker can
damage the hardware, though I'd suspect they just mean firmware.
\- i have deleted my comments. pls dont restore them.
\- if i know you, you can mail me with specific questions --psb
\- if i know you, you can mail me with specific questions.
it is my opinion it is not an especially interesting problem,
just large in magnitude. there are more serious problems
in the nature of of internet routing as typically implemented
today which can be exploited to "bring the net to a halt" and
cant be fixed with a code patch. if the "damage the hardware"
comment refers to what i think, it is pretty much a red herring.
if i take over your solaris box, i can "damage the hardware" too.
i guess this bring new meaning to "8 fold path".
just large in magnitude and a lot of work to fix. there are more
serious problems in the nature of of internet routing as
typically implemented today and tcp/ip which can be exploited to
"bring the net to a halt" and cant be fixed with a code
patch. just like knowledge of how to "defeat" congestion
control ... well known but the stack hacks are not readily
available as far as i know. if the "damage the hardware"
comment refers to what i think it does, it is pretty much a
red herring. if i take over your solaris box, i can "damage
the hardware" too.
\- actally let me revise: the attack vector isnt interesting
(old idea ... ios heap attacks) but where you go from there is
interesting, but only so because what you are sitting on is
potentially a core router. not to say lynn didnt put in a lot
or work and cleverness to understand the weird MEMORY
archieteure of a router. the best of mudge, or SD are a lot
cooler, also you may wish to see Mr. FX's discussion of
the arch of IOS ... a router is not a "regular" computer.
\_ Wired News has a bit of a story about this, including links to the
researcher's report with a bit more details. see http://www.wired.com
\- I have put some comments at ~psb/MOTD/CiscoComment
\_ There was a lot of discussion on this on the DailyDave (STFW)
mailing list recently. I have the actual presentation, so mail
me @zog.net if you haven't seen it already. -John
mailing list recently, including, I believe, a few links to
shellcode. Drop me a mail @zog.net if you want me to forward the
archives to you (I don't think it's on http://immunitysec.com yet.) -John
\_ There has been a lot of discussion on NANOG about this in the
last two or three days. Cisco has issued a security advisory
stating that it is a IPv6 Bug:
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml
http://lin.kz/?e0pw3
http://www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml
More information about Lynn's presentation is available at:
http://www.tomsnetworking.com/Sections-article131.php
http://lin.kz/?6bjoj
http://www.tomsnetworking.com/Sections-article131.php
The import of the presentation seems to be that IOS is an OS
and is vulnerable to buffer overflow attacks like any other OS:
http://www.merit.edu/mail.archives/nanog/2005-07/msg00991.html
http://lin.kz/?bv693
http://www.merit.edu/mail.archives/nanog/2005-07/msg00991.html
You may want to read these NANOG postings for more information:
http://www.merit.edu/mail.archives/nanog/msg09799.html
http://www.merit.edu/mail.archives/nanog/msg09914.html
http://http://www.merit.edu/mail.archives/nanog/2005-07/msg00981.html
http://lin.kz/?3nqo6
http://lin.kz/?9j2sj
http://www.merit.edu/mail.archives/nanog/msg09799.html
http://www.merit.edu/mail.archives/nanog/msg09914.html
http://www.merit.edu/mail.archives/nanog/2005-07/msg00981.html |
| 7/8 |
|
| www.cisco.com/warp/public/707/cisco-sa-20050729-ipv6.shtml Cisco Security Procedures Summary Cisco Internetwork Operating System (IOS) Software is vulnerable to a De nial of Service (DoS) and potentially an arbitrary code execution attack from a specifically crafted IPv6 packet. Only devices that have been explicitly configure d to process IPv6 traffic are affected. Upon successful exploitation, th e device may reload or be open to further exploitation. Cisco has made free software available to address this vulnerability for all affected customers. Affected Products Vulnerable Products This issue affects all Cisco devices running any unfixed version of Cisco IOS or Cisco IOS XR code that supports, and is configured for, IPv6. A system which supports IPv6, if not specifically configured for IPv6, is not affected. You can use the show ipv6 interface command to determine w hether IPv6 is enabled on a system. Sample output of the show ipv6 interface command is shown below for two s ystems, one not configured for IPv6 and one configured for IPv6. An empty output or an error message will be displayed if IPv6 is disabled or unsupported on the system. Router#show ipv6 int fa 0/0 -here you see blank output In the example below the system is vulnerable. Router#show ipv6 interface Serial1/0 is up, line protocol is up IPv6 is enabled, link-local address is FE80::A8BB:CCFF:FE00:D200 Global unicast address(es): 2001:1:33::3, subnet is 2001:1:33::/64 Joined group address(es): FF02::1 FF02::1:FF00:3 FF02::1:FF00:D200 MTU is 1500 bytes ICMP error messages limited to one every 100 milliseconds ICMP redirects are enabled ND DAD is enabled, number of DAD attempts: 1 ND reachable time is 30000 milliseconds Router# A router that has IPv6 enabled on a physical or logical interface is vuln erable to this issue even if ipv6 unicast-routing is globally disabled. The show ipv6 interface command can be used to determine whether IPv6 is enabled on any interface. To determine the software running on a Cisco product, log in to the devic e and issue the show version command to display the system banner. Cisco IOS Software will identify itself as "Internetwork Operating System Sof tware" or simply "IOS." On the next line of output, the image name will be displayed between parentheses, followed by "Version" and the IOS rele ase name. Other Cisco devices will not have the show version command or will give different output. A system that is running a Cisco IOS XR version prior to 32 is also affe cted by this vulnerability if configured for IPv6. The show ipv6 interfa ce command can be used to identify whether IPv6 is enabled on a system r unning Cisco IOS XR. Products Confirmed Not Vulnerable Products that are not running Cisco IOS or Cisco IOS XR are not affected. Products running any version of Cisco IOS that do not have IPv6 configure d interfaces are not vulnerable. No other Cisco products are currently known to be affected by these vulne rabilities. Details IPv6 is the "Internet Protocol Version 6", designed by the Internet Engin eering Task Force (IETF) to replace the current version Internet Protoco l, IP Version 4 (IPv4). A vulnerability exists in the processing of IPv6 packets. Crafted packets from the local segment received on logical interfaces (that is, tunnels including 6to4 tunnels) as well as physical interfaces can trigger this vulnerability. Crafted packets can not traverse a 6to4 tunnel and attac k a box across the tunnel. The crafted packet must be sent from a local network segment to trigger t he attack. This vulnerability can not be exploited one or more hops from the IOS device. Impact Successful exploitation of the vulnerability on Cisco IOS may result in a reload of the device or execution of arbitrary code. Repeated exploitat ion could result in a sustained DoS attack or execution of arbitrary cod e on Cisco IOS devices. Successful exploitation of the vulnerability on Cisco IOS-XR may result i n a restart of the IPv6 neighbor discovery process. A restart of this pr ocess will only affect IPv6 traffic passing through the system. Repeated exploitation could result in a sustained DoS attack on IPv6 traffic. Software Versions and Fixes Each row of the Cisco IOS software table below describes a release train and the platforms or products for which it is intended. If a given relea se train is vulnerable, then the earliest possible releases that contain the fix (the First Fixed Release) and the anticipated date of availabil ity for each are listed in the Rebuild and Maintenance columns. A device running a release in the given train that is earlier than the release i n a specific column (less than the First Fixed Release) is known to be v ulnerable. The release should be upgraded at least to the indicated rele ase or a later version (greater than or equal to the First Fixed Release label). html and any subsequent advisories to determine exposure and a complete upgrade solu tion. In all cases, customers should exercise caution to be certain the devices to be upgraded contain sufficient memory and that current hardware and software configurations will continue to be supported properly by the ne w release. If the information is not clear, contact the Cisco Technical Assistance Center ("TAC") for assistance. Obtaining Fixed Software Customers with Service Contracts Customers with contracts should obtain upgraded software through their re gular update channels. Customers using Third-party Support Organizations Customers whose Cisco products are provided or maintained through prior o r existing agreement with third-party support organizations such as Cisc o Partners, authorized resellers, or service providers should contact th at support organization for assistance with the upgrade, which should be free of charge. Customers without Service Contracts Customers who purchase direct from Cisco but who do not hold a Cisco serv ice contract and customers who purchase through third-party vendors but are unsuccessful at obtaining fixed software through their point of sale should get their upgrades by contacting the Cisco Technical Assistance Center (TAC). com Please have your product serial number available and give the URL of this notice as evidence of your entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC. shtml for a dditional TAC contact information, including special localized telephone numbers and instructions and e-mail addresses for use in various langua ges. Customers may only install and expect support for the feature sets they h ave purchased. Workarounds The effectiveness of any workaround is dependent on specific customer sit uations such as product mix, network topology, traffic behavior, and org anizational mission. Due to the variety of affected products and release s, customers should consult with their service provider or support organ ization to ensure any applied workaround is the most appropriate for use in the intended network before it is deployed. In networks where IPv6 is not needed but enabled, disabling IPv6 processi ng on an IOS device will eliminate exposure to this vulnerability. On a router which is configured for IPv6, this must be done by issuing the co mmand no ipv6 enable and no ipv6 address on each interface. Exploitation and Public Announcements This vulnerability was disclosed on July 27, 2005 at the Black Hat securi ty conference. Status of This Notice: INTERIM THIS ADVISORY IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTY OF MERCHANTABILITY. YO UR USE OF THE INFORMATION ON THE ADVISORY OR MATERIALS LINKED FROM THE A DVISORY IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDAT E THIS NOTICE AT ANY TIME CISCO EXPECTS TO UPDATE THIS NOTICE WITHIN SI X WEEKS FROM THE ORIGINAL DATE OF THIS NOTICE. In addition to worldwide web posting, a text version of this notice is cl ear-signed with the Cisco PSIRT PGP key and is posted to the following e -mail and Usenet news recipients. com Future updates of this advisory, if any, will be placed on Cisco's worldw ide website, but may or may not be actively announced on mailing lists o r newsgroups. Users concerned about this ... |
| lin.kz/?e0pw3 -> bustywebshots.blogspot.com/ This blog is devoted to the natural beauty of young voluptuous girls. Post your findings and links in the "comments" area in any of the followi ng posts. Ill make new posts every week so check back often and share yo ur pictures! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. The link to the parewinkl galleries was posted on this blog a while back but there are plenty more new pictures and galleries to see. Browse thro ugh the galleries and make sure to click on the links to her friends gal leries on the left of webshots. Im sure there are more pictures worth vi ewing - her chest is growing! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Three new albums posted this July with plenty of pictures. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Also it seems she might be putting on some weight - shes slightly thicker then usual and in a few p ictures she almost looks pregnant. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Another great find by a visitor of this blog - thanks for y our help! and other albums of her friends, few more pics here and there. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. More pictures of her that she just released in a set of new albums. Again , the drinking and sillyness can be seen, but her round chest is in many of the pictures. Get these while you can, for this girl is quite popula r and she may pull her pictures should she get too many weirdos trying t o email her or something. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Popular girl with a small handful of pictures of her partying and living it up. Links were posted to her pictures a while back but I never got ar ound to making a post about her. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. A fair bit of pictures in the Florida gallery of the two of them having fun. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Nice to see someone not afraid of their bodies and being goofy i n front of the camera. Have a look at the picture of her next to friends a nd family members and its easy to see her lack of height. On a different note, now that blogger has picture hosting for free, all t he small preview shots to the left (starting with this post) will have l inks to a full sized picture if you click on them. Should make it easier to get an idea of the girl for those with monitors that have high resol utions. You will still have to browse the galleries for pictures and sav e them on your own hard drives since I dont have time to host them all ( nor do I know what a "good" picture is - many albums get repetative and many more pictures dont even show off the girls chest, so for some peopl e there might be no point). And I know I say this a lot on these comment areas, but I really really r eally do appriciate the help ive recieved over the past few months. Thanks to everyone who visits and posts c omments or links to a new girl. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Young C or D cupper with braces - thanks to Rallo for the link. Mostly va cation pics and the link below is to a hidden album where most of the pi ctures are. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Not many pictures and she smokes - s o I want to punch her in the face but oh well. Thanks for the link EricD og and yes I agree smoking isnt for me, but to each their own. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Couple of young girls being silly and showing off their chests. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Lets hope she maintains her confidence and does will in life. |
| www.tomsnetworking.com/Sections-article131.php Print This Introduction Being arrested or sued is not positive experience, but for speakers at Bl ack Hat and Defcon, it is a badge of honor. On July 27, Michael Lynn, a computer security expert, demonstrated how to gain administrator access to many Cisco routers and switches. This demonstration occured during Ly nn's scheduled talk on the vulnerabilities of Cisco IOS at the 2005 Blac k Hat Briefings in Las Vegas. As a result of the talk, Lynn incurred the wrath of his former employer I nternet Security Solutions (ISS) and Cisco Systems. In the space of a fe w hours, Lynn became unemployed and was also served with a lawsuit. Click Here While Lynn did not provide a step-by-step on how to break into Cisco rout ers, he provided enough details for experienced professionals to figure out the rest of the process. In this report, I will show you some of the slides used during his talk and give an outline of the steps. Please Note: During the talk, I photographed the slides from the project or screen. The quality of these pictures is not great, but full-quality versions will probably reach the Internet within the next few days. Refurbished and Used Networking Equipment Network Liquidators sells refurbished and used networking equipment for u p to 95% off list, with a 1 year warranty. We buy and sell top brands li ke Cisco, Extreme, Foundry, and more. Enterprise File Replication & Web Deployment Peer-to-peer & one-to-many, scheduled file replication and content distri bution for cross platform deployments on Windows, UNIX and NAS systems. Dedicated Server Hosting: High Speed, Low Cost Outsource your web site and application hosting to ServePath, the largest dedicated server specialist on the West Coast. FirstSpot - Wi-Fi Hotspot wireless gateway Wi-Fi Hotspot Management Software for Windows - various enhancements incl ude Data Transfer tracking and Quota System, Hour-pass/day-pass, RADIUS Authentication Mode, Client Isolation and more ... Shop Copyright of all documents and scripts belonging to this site by Tom's Gu ides Publishing LLC 1996 - 2005. Most of the information contained on th is site is copyrighted material. It is illegal to copy or redistribute t his information in any way without the expressed written consent of Tom' s Guides Publishing. |
| lin.kz/?6bjoj -> bustywebshots.blogspot.com/ This blog is devoted to the natural beauty of young voluptuous girls. Post your findings and links in the "comments" area in any of the followi ng posts. Ill make new posts every week so check back often and share yo ur pictures! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. The link to the parewinkl galleries was posted on this blog a while back but there are plenty more new pictures and galleries to see. Browse thro ugh the galleries and make sure to click on the links to her friends gal leries on the left of webshots. Im sure there are more pictures worth vi ewing - her chest is growing! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Three new albums posted this July with plenty of pictures. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Also it seems she might be putting on some weight - shes slightly thicker then usual and in a few p ictures she almost looks pregnant. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Another great find by a visitor of this blog - thanks for y our help! and other albums of her friends, few more pics here and there. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. More pictures of her that she just released in a set of new albums. Again , the drinking and sillyness can be seen, but her round chest is in many of the pictures. Get these while you can, for this girl is quite popula r and she may pull her pictures should she get too many weirdos trying t o email her or something. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Popular girl with a small handful of pictures of her partying and living it up. Links were posted to her pictures a while back but I never got ar ound to making a post about her. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. A fair bit of pictures in the Florida gallery of the two of them having fun. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Nice to see someone not afraid of their bodies and being goofy i n front of the camera. Have a look at the picture of her next to friends a nd family members and its easy to see her lack of height. On a different note, now that blogger has picture hosting for free, all t he small preview shots to the left (starting with this post) will have l inks to a full sized picture if you click on them. Should make it easier to get an idea of the girl for those with monitors that have high resol utions. You will still have to browse the galleries for pictures and sav e them on your own hard drives since I dont have time to host them all ( nor do I know what a "good" picture is - many albums get repetative and many more pictures dont even show off the girls chest, so for some peopl e there might be no point). And I know I say this a lot on these comment areas, but I really really r eally do appriciate the help ive recieved over the past few months. Thanks to everyone who visits and posts c omments or links to a new girl. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Young C or D cupper with braces - thanks to Rallo for the link. Mostly va cation pics and the link below is to a hidden album where most of the pi ctures are. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Not many pictures and she smokes - s o I want to punch her in the face but oh well. Thanks for the link EricD og and yes I agree smoking isnt for me, but to each their own. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Couple of young girls being silly and showing off their chests. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Lets hope she maintains her confidence and does will in life. |
| www.merit.edu/mail.archives/nanog/2005-07/msg00991.html The important part of > Lynn's presentation wasn't the IPv6 exploit, but how future exploits can > be used to execute arbitrary code on Cisco equipment. By making a big > deal about the "IPv6 exploit" they are in effect trying to reassure > people that run IPv4-only networks that this is not a big problem, and > that it doesn't effect them. Important part of Lynn's presentation is that there will be buffer overflows and they can be exploited, this is vendor independent. And the threat was there 10 years ago and the threat will be there 10 years from now. Some people were also surprised by the 'late' ICMP 'vulnerabilities' and some even found time to bash $vendor about it. I guess someone has to yell wolf every now and then to interest people in maintaining their systems. |
| lin.kz/?bv693 -> bustywebshots.blogspot.com/ This blog is devoted to the natural beauty of young voluptuous girls. Post your findings and links in the "comments" area in any of the followi ng posts. Ill make new posts every week so check back often and share yo ur pictures! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. The link to the parewinkl galleries was posted on this blog a while back but there are plenty more new pictures and galleries to see. Browse thro ugh the galleries and make sure to click on the links to her friends gal leries on the left of webshots. Im sure there are more pictures worth vi ewing - her chest is growing! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Three new albums posted this July with plenty of pictures. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Also it seems she might be putting on some weight - shes slightly thicker then usual and in a few p ictures she almost looks pregnant. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Another great find by a visitor of this blog - thanks for y our help! and other albums of her friends, few more pics here and there. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. More pictures of her that she just released in a set of new albums. Again , the drinking and sillyness can be seen, but her round chest is in many of the pictures. Get these while you can, for this girl is quite popula r and she may pull her pictures should she get too many weirdos trying t o email her or something. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Popular girl with a small handful of pictures of her partying and living it up. Links were posted to her pictures a while back but I never got ar ound to making a post about her. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. A fair bit of pictures in the Florida gallery of the two of them having fun. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Nice to see someone not afraid of their bodies and being goofy i n front of the camera. Have a look at the picture of her next to friends a nd family members and its easy to see her lack of height. On a different note, now that blogger has picture hosting for free, all t he small preview shots to the left (starting with this post) will have l inks to a full sized picture if you click on them. Should make it easier to get an idea of the girl for those with monitors that have high resol utions. You will still have to browse the galleries for pictures and sav e them on your own hard drives since I dont have time to host them all ( nor do I know what a "good" picture is - many albums get repetative and many more pictures dont even show off the girls chest, so for some peopl e there might be no point). And I know I say this a lot on these comment areas, but I really really r eally do appriciate the help ive recieved over the past few months. Thanks to everyone who visits and posts c omments or links to a new girl. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Young C or D cupper with braces - thanks to Rallo for the link. Mostly va cation pics and the link below is to a hidden album where most of the pi ctures are. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Not many pictures and she smokes - s o I want to punch her in the face but oh well. Thanks for the link EricD og and yes I agree smoking isnt for me, but to each their own. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Couple of young girls being silly and showing off their chests. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Lets hope she maintains her confidence and does will in life. |
| www.merit.edu/mail.archives/nanog/msg09799.html Historical RE: Cisco IOS Exploit Cover Up * From: Buhrmaster, Gary * Date: Thu Jul 28 12:24:05 2005 The video *might* be available on the Washington Post later today. com/ "Michael Lynn's "The Holy Grail: Cisco Shellcode and Remote Execution" presentation blew the doors off of Caesar's Palace Today with a full shell code exec capabilities for nearly ANY Cisco vulnerability. If your organization hasn't updated any Cisco IOS-based devices lately, the devices may be under someone else's control. The story from Michael Lynn proceed like this: He discovered clues that there was an issue being exploited when reading translated Chinese hacker sites that alluded to the issue. It was likely discovered after the theft of the Cisco Source code in May 2004 which was itself part of a larger series of intrusions. Upon further research leading to the development of working proo-of-concept code, he and his former employer ISS notified Cisco. Cisco patched the issue silently in April but never issued an advisory as to the seriousness of the issue. Cisco has since pulled all older, vulnerable versions of IOS from it's web site. After discovering that ISS was allow Lynn to present on the issue, Cisco CEO John Chambers attempted to censor the issue. When ISS stood it's ground, John Chambers requested that the US Government intervene as a matter of national security to no apparent avail. The popular press is starting to pick up on the issue now and I hear rumour that Michael's presentation MIGHT be made available in video via the Washington Post web site tomorrow." edu > Subject: Re: Cisco IOS Exploit Cover Up > > > I have been searching the net since this morning, for "The Holy > Grail: Cisco IOS Shellcode Remote Execution", or variations of such. |
| www.merit.edu/mail.archives/nanog/msg09914.html Historical RE: Cisco IOS Exploit Cover Up * From: Buhrmaster, Gary * Date: Fri Jul 29 16:24:31 2005 The *best* exploit is the one alluded to in the presentation. Overwrite the nvram/firmware to prevent booting (or, perhaps, adjust the voltages to damaging levels and do a "smoke test"). If you could do it to all GSR linecards, think of the RMA costs to Cisco (not to mention the fact that Cisco could not possible replace all the cards in all the GSRs across the internet in an anywhere reasonable timeframe). edu > Subject: Re: Cisco IOS Exploit Cover Up > > > Scott Morris wrote: > > And quite honestly, we can probably be pretty safe in > assuming they will not > > be running IPv6 (current exploit) or SNMP (older exploits) > or BGP (other > > exploits) or SSH (even other exploits) on that box. A windows box can find > routers to attack easily enough by doing traceroutes to > various sites. |
| www.merit.edu/mail.archives/nanog/2005-07/msg00981.html html I think these guys better prepare for the "slashdot effect"... org have a long history of archiving documents that others in the business have found to be embarrassing, such as the CyberP atrol stuff. Personally, I'd trust their version a lot more than BoingBoing. I'm sure that lots of other mirrors will now pop up, too. org> "Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety." |
| lin.kz/?3nqo6 -> bustywebshots.blogspot.com/ This blog is devoted to the natural beauty of young voluptuous girls. Post your findings and links in the "comments" area in any of the followi ng posts. Ill make new posts every week so check back often and share yo ur pictures! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. The link to the parewinkl galleries was posted on this blog a while back but there are plenty more new pictures and galleries to see. Browse thro ugh the galleries and make sure to click on the links to her friends gal leries on the left of webshots. Im sure there are more pictures worth vi ewing - her chest is growing! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Three new albums posted this July with plenty of pictures. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Also it seems she might be putting on some weight - shes slightly thicker then usual and in a few p ictures she almost looks pregnant. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Another great find by a visitor of this blog - thanks for y our help! and other albums of her friends, few more pics here and there. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. More pictures of her that she just released in a set of new albums. Again , the drinking and sillyness can be seen, but her round chest is in many of the pictures. Get these while you can, for this girl is quite popula r and she may pull her pictures should she get too many weirdos trying t o email her or something. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Popular girl with a small handful of pictures of her partying and living it up. Links were posted to her pictures a while back but I never got ar ound to making a post about her. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. A fair bit of pictures in the Florida gallery of the two of them having fun. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Nice to see someone not afraid of their bodies and being goofy i n front of the camera. Have a look at the picture of her next to friends a nd family members and its easy to see her lack of height. On a different note, now that blogger has picture hosting for free, all t he small preview shots to the left (starting with this post) will have l inks to a full sized picture if you click on them. Should make it easier to get an idea of the girl for those with monitors that have high resol utions. You will still have to browse the galleries for pictures and sav e them on your own hard drives since I dont have time to host them all ( nor do I know what a "good" picture is - many albums get repetative and many more pictures dont even show off the girls chest, so for some peopl e there might be no point). And I know I say this a lot on these comment areas, but I really really r eally do appriciate the help ive recieved over the past few months. Thanks to everyone who visits and posts c omments or links to a new girl. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Young C or D cupper with braces - thanks to Rallo for the link. Mostly va cation pics and the link below is to a hidden album where most of the pi ctures are. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Not many pictures and she smokes - s o I want to punch her in the face but oh well. Thanks for the link EricD og and yes I agree smoking isnt for me, but to each their own. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Couple of young girls being silly and showing off their chests. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Lets hope she maintains her confidence and does will in life. |
| lin.kz/?9j2sj -> bustywebshots.blogspot.com/ This blog is devoted to the natural beauty of young voluptuous girls. Post your findings and links in the "comments" area in any of the followi ng posts. Ill make new posts every week so check back often and share yo ur pictures! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. The link to the parewinkl galleries was posted on this blog a while back but there are plenty more new pictures and galleries to see. Browse thro ugh the galleries and make sure to click on the links to her friends gal leries on the left of webshots. Im sure there are more pictures worth vi ewing - her chest is growing! Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Three new albums posted this July with plenty of pictures. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Also it seems she might be putting on some weight - shes slightly thicker then usual and in a few p ictures she almost looks pregnant. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Another great find by a visitor of this blog - thanks for y our help! and other albums of her friends, few more pics here and there. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. More pictures of her that she just released in a set of new albums. Again , the drinking and sillyness can be seen, but her round chest is in many of the pictures. Get these while you can, for this girl is quite popula r and she may pull her pictures should she get too many weirdos trying t o email her or something. Webshots does not support direct linking well so thi s is the work around. Copy the link into your browser to visit her websh ots gallery. Popular girl with a small handful of pictures of her partying and living it up. Links were posted to her pictures a while back but I never got ar ound to making a post about her. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. A fair bit of pictures in the Florida gallery of the two of them having fun. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Nice to see someone not afraid of their bodies and being goofy i n front of the camera. Have a look at the picture of her next to friends a nd family members and its easy to see her lack of height. On a different note, now that blogger has picture hosting for free, all t he small preview shots to the left (starting with this post) will have l inks to a full sized picture if you click on them. Should make it easier to get an idea of the girl for those with monitors that have high resol utions. You will still have to browse the galleries for pictures and sav e them on your own hard drives since I dont have time to host them all ( nor do I know what a "good" picture is - many albums get repetative and many more pictures dont even show off the girls chest, so for some peopl e there might be no point). And I know I say this a lot on these comment areas, but I really really r eally do appriciate the help ive recieved over the past few months. Thanks to everyone who visits and posts c omments or links to a new girl. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Young C or D cupper with braces - thanks to Rallo for the link. Mostly va cation pics and the link below is to a hidden album where most of the pi ctures are. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Not many pictures and she smokes - s o I want to punch her in the face but oh well. Thanks for the link EricD og and yes I agree smoking isnt for me, but to each their own. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Couple of young girls being silly and showing off their chests. Webshots does not support direct linking well so thi s is the work around. Copy the link above into your browser to visit her webshots gallery. Lets hope she maintains her confidence and does will in life. |
| www.wired.com Wired News Politics Note: You are reading this message either because you can not see our css files (served from Akamai for performance reasons), or because you do n ot have a standards-compliant browser. Critics Squeeze Cisco Over China * The networking giant faces criticism that its products help the Chinese government censor internet connections, but the company says it's done nothing wrong. Frist Flip-Flops on Stem Cells * The leading Senate Republican breaks with President Bush, saying he now supports expanded federal funding into stem cell research that appears promising in the battle against disease and other medical conditions. Whistle-Blower Faces FBI Probe * The researcher who revealed a critical vulnerability he discovered in a Cisco router system becomes the target of a criminal investigation. Dating Sites Rekindle the Flame * As their explosive growth fades like the bloom of new love, online pers onals sites turn to more sophisticated technology or niche markets to ke ep the romance alive. Senators Grill P2P Providers * Having suffered a recent setback at the hands of the Supreme Court, fil e-swapping companies face the specter of new federal legislation aimed a t reining in porn and piracy. Furthermore Blubberlicious Despite international restrictions on whale hunting and public concern about plummeting whale populations, Japanese and Norwegian seafood producers have concocted new products to try to drum up demand for the sea mammals' meat. Japan is supplying whale burgers for school lunches, and Norway's Karsten Ellingsen Co. is peddling burgers, steaks and "Lofotskinke," which it calls "pastrami," under the slogan "wild meat from the sea." The UK Whale and Dolphin Conservation Society calls the new products "an attempt to revive a dying industry." But an Ellingsen exec is undeterred, and considers the criticism free publicity. Wired News on the Go Sync up, head out, read Wired News on your han dheld at your leisure. Quote Marks "We are not -- nor can we ever afford to become -- starfuckers." |
| zog.net The outlook wasn't brilliant for the Mudville nine that day: The score stood four to two, with but one inning more to play, And then when Cooney died at first, and Barrows did the same, A pall-like silence fell upon the patrons of the game. The rest cling to that hope which springs eternal in the human breast; They thought, "If only Casey could but get a whack at that-- We'd put up even money now, with Casey at the bat." But Flynn preceded Casey, as did also Jimmy Blake, And the former was a hoodoo, while the latter was a cake; So upon that stricken multitude grim melancholy sat, For there seemed but little chance of Casey getting to the bat. But Flynn let drive a single, to the wonderment of all, And Blake, the much despised, tore the cover off the ball; And when the dust had lifted, and men saw what had occurred, There was Jimmy safe at second and Flynn - hugging third. Then from five thousand throats and more there rose a lusty yell; It pounded on the mountain and recoiled upon the flat, For Casey, mighty Casey, was advancing to the bat. There was ease in Casey's manner as he stepped into his place; There was pride in Casey's bearing and a smile lit Casey's face. And when, responding to the cheers, he lightly doffed his hat, No stranger in the crowd could doubt 'twas Casey at the bat. Ten thousand eyes were on him as he rubbed his hands with dirt; Five thousand tongues applauded when he wiped them on his shirt; Then while the writhing pitcher ground the ball into his hip, Defiance flashed in Casey's eye, a sneer curled Casey's lip. And now the leather-covered sphere came hurtling through the air, And Casey stood a-watching it in haughty grandeur there. Close by the sturdy batsman the ball unheeded sped-- "That ain't my style," said Casey. From the benches, black with people, there went up a muffled roar, Like the beating of the storm-waves on a stern and distant shore; And it's likely they'd had killed him had not Casey raised his hand. With a smile of Christian charity great Casey's visage shone; He signaled to the pitcher, and once more the dun sphere flew; But Casey still ignored it, and the umpire said "Strike two!" cried the maddened thousands, and echo answered "Fraud!" But one scornful look from Casey and the audience was awed. They saw his face grow stern and cold, they saw his muscles strain, And they knew that Casey wouldn't let that ball go by again. The sneer has fled from Casey's lip, his teeth are clenched in hate; And now the pitcher holds the ball, and now he lets it go, And now the air is shattered by the force of Casey's blow. Oh, somewhere in this favored land the sun is shining bright; The band is playing somewhere, and somewhere hearts are light, And somewhere men are laughing, and little children shout; But there is no joy in Mudville-- great Casey has struck out. |
| immunitysec.com January 14,2005 Immunity announces the addition of Justine Bone (Aitel) to the Immunity t eam. Justine was previously responsible for global risk management and i nformation security at Bloomberg LP, based in New York City. Immunity CANVAS is groundbreaking software that allows you to test compli ance and let your organization discover how vulnerable you really are. With packaged vulnerability modules for scripting and a powerful framewor k for developing original security checks, Immunity CANVAS provides a wa y for any organization to have a concrete picture of their security post ure, without guesswork or estimation. |