hypoclear

08/10/01		Tim Higgins of www.practicallynetworked.com has just informed me that Linksys has released an upgrade of their firmware for their 1,4 and USB port routers to version 1.39.3 BETA. This should fix the password retrieval vulnerability.
08/06/01		I just checked today and you can read securityfocus's write up on the two vulnerabilities I posted last week. LinkSys EtherFast Router Password HTML Source Revealing Vulnerability Microsoft Windows NT 4.0 NT4ALL DoS Vulnerability I also want to note that the Microsoft Security Response Center was very helpful to me. It was only when I forwarded it to Microsoft Product Support Services was I ignored.
08/03/01		Today I'm releasing an advisory on a potentially damaging DoS attack against WinNT SP6a systems. Microsoft seemed to shrug it off, but I felt it was important to inform the community.
08/03/01		More info on the Linksys advisory. Mike Duncan, on the Bugtraq mailing list has also found that "(The vulnerability) is also true on the LinkSys Cable/DSL Router without the 4port built in HUB and maybe other products of theirs." Also apparently some people don't agree that this is a valid security problem. I think it's fairly easy for someone to set up a packet sniffer inside a LAN, and have passwords sent remotely. Also due to the fact that this is primarily a consumer product it would make it easier to exploit (most consumers not paying attention to security). Some businesses may also use the product to split-off low cost high speed internet, and they may take the problem a bit more seriously. I probably should also say that I think it's still a great product (much better than some of the competing consumer routers).
08/02/01		After some feedback from the new Vuln-Watch mailing list, I have updated my Linksys EtherFast 4-Port Cable/DSL Router advisory. Special thanks to Weld.
08/02/01		After waiting a long time for Linksys to reply back to me (which they haven't done as of yet) I decided to release this security advisory for their "EtherFast 4-Port Cable/DSL Router".
08/01/01		I was out of town for a few days, so I wasn't able to release this SSH 3.0.0 vulnerability scanner. On another note, both vendors I have sent advisories to have not been communicating with me, so I expect to release them in a few days.
07/25/01		Since Packetstorm moved and the old HNN link is dead, I updated the links appropriately. Since there was a lot of old news on the page, I moved a bunch to the new Archived News section. In security news, I should be releasing two advisories in the near future. I'm currently waiting for vendor response.
07/05/01		Released IOScan.pl, because it would be annoying to try to find vulnerable routers without a scanner.
07/03/01		Wrote this for the Cisco IOS vulnerability ios.pl. Check out the files section for a longer description.
07/01/01		My website has moved to a new server, so hopefully it is faster now, but it's still at the same address http://hypoclear.cjb.net
05/31/01		I have been very quiet lately due to school etc... but I finally got inspired enough to do something. Check out killname. It's a little UNIX utility, written in PERL, that kills processes by name rather than PID. Deffinitly a lot less annoying than doing a "$ps -u hypoclear" "$kill 12345"
01/24/01		Finally a new security release. Check out thong.pl
01/23/01		The site is finally updated! I added a 'MISC' section. There you can find some random programs etc. nothing security related though. As promised I will be looking into some security related things soon, and am hoping to release a few things.
01/20/01		Well, I haven't updated this page in a while. Last semester's work was huge (don't take 4 computer science classes in 1 semester). Now hopefully I will have more time to devote to this site and hopefully release some cool things. I'll be updating this site soon so stay tuned.

News Archived News Files Misc. Programs
Contact me anytime at hypoclear@jungle.net
If necessary look at my disclaimer before contacting me.