.: [ TOOLS-ON.NET - Network tools from Alexander K. Yezhov ] :. Free tools for connected people. Online privacy and proxy tests, flexible whois tool, ping, traceroute and more.

Categories

• Main index

• Network tools

• Privacy tools

• Web and your privacy

• E-Mail and your privacy

• Using IRC

• Using ICQ

• Search tools

Contact info

FREE E-Mail

Your@tools-on.every1.net

[ get your mail address now ]

Wallpaper to take away

more wallpapers
© Alexander Yezhov

My micro banner

.:: Welcome to Tools-On.Net ::.

Welcome to tools-on.net. I'm glad to see you at this site. The tools you can find here were started as a couple of scripts I made time ago to help me to administrate Promstroybank of Russia's domain. Now they are available here and at my leader.ru server. Note: Internal links can be changed, so please use http://tools-on.net/ URL to link or bookmark.

Some of the scripts are in beta. You can visit leader.ru server for old stable versions. Also remember that some tools on this site may be unavailable for you if you're using a cluster of proxy servers that changes your ip on each request.

All the tools and documents you may find on this site are for educational purposes only. Please don't copy or redistribute content of this site unless you have my permission - pay some respect to my work. Content grabbers aren't welcomed to the site.

Alexander K. Yezhov, MCP+I, MCSA, MCSE

The advertisement is the most truthful part of a newspaper

Use your mobile phone! WAP-Enabled Leader's Whois for mobile users
If you have any device with a WAP browser installed, you can use WAP versions of my scripts. To do so, just open the following URL: http://tools-on.net/wap/.

Recent BUGTRAQ topics

Topic Date

[USN-656-1] CUPS vulnerabilities 15.10.2008
Multiple Flash Authoring Heap Overflows - Malforme ... 15.10.2008
[ MDVSA-2008:213 ] dbus 15.10.2008
[security bulletin] HPSBMA02349 SSRT080043 rev.2 - ... 15.10.2008
[ MDVSA-2008:212 ] libxml2 15.10.2008
Internet Explorer 6 componentFromPoint() remote me ... 15.10.2008
Paper: Adventures with a certain Xen vulnerability 15.10.2008
Exploit for MS08-066 - AFD.sys kernel memory over ... 15.10.2008
MS OWA 2003 Redirection Vulnerability 15.10.2008
Vivid Ads Shopping Cart (cid) Remote SQL Injection 15.10.2008
[USN-655-1] exiv2 vulnerabilities 15.10.2008

Latest vulnerabilities according to securityfocus' database

Vulnerability Date

Microsoft Host Integration Server RPC Remote Comma ... 15.10.2008
CUPS Multiple Heap Based Buffer Overflow Vulnerabi ... 15.10.2008
CUPS PNG Filter Multiple Integer Overflow Vulnerab ... 15.10.2008
Oracle October 2008 Oracle Critical Patch Update M ... 15.10.2008
CUPS 'HP-GL/2' Filter Remote Code Execution Vulner ... 15.10.2008
Microsoft Windows Internet Printing Service Intege ... 15.10.2008
Microsoft Windows SeImpersonatePrivilege Local Pri ... 15.10.2008
D-Bus 'dbus_signature_validate()' Type Signature D ... 15.10.2008
Adobe Flash CS3 Professional SWF File Heap Buffer ... 15.10.2008
NewLife Blogger 'nlb3' Cookie SQL Injection Vulner ... 15.10.2008
Microsoft Message Queuing Service RPC Query Heap C ... 15.10.2008

Latest additions to packetstorm

MDVSA-2008-213.txt (4797 bytes)

Mandriva Linux Security Advisory - The D-Bus library did not correctly validate certain corrupted signatures which could cause a crash of applications linked against the D-Bus library if a local user were to send a specially crafted D-Bus request. The updated packages have been patched to prevent this issue.
MDVSA-2008-212.txt (2971 bytes)

Mandriva Linux Security Advisory - libxml2 version 2.7.0 and 2.7.1 did not properly handle predefined entities definitions in entities, which allowed context-dependent attackers to cause a denial of service (memory consumption and application crash) via certain XML documents. The updated packages have been patched to prevent this issue.
USN-656-1.txt (25071 bytes)

Ubuntu Security Notice 656-1 - It was discovered that the SGI image filter in CUPS did not perform proper bounds checking. If a user or automated system were tricked into opening a crafted SGI image, an attacker could cause a denial of service. It was discovered that the texttops filter in CUPS did not properly validate page metrics. If a user or automated system were tricked into opening a crafted text file, an attacker could cause a denial of service. It was discovered that the HP-GL filter in CUPS did not properly check for invalid pen parameters. If a user or automated system were tricked into opening a crafted HP-GL or HP-GL/2 file, a remote attacker could cause a denial of service or execute arbitrary code with user privileges. In Ubuntu 7.10 and 8.04 LTS, attackers would be isolated by the AppArmor CUPS profile.
adobe-heap.txt (2885 bytes)

During analysis of the SWF file format used by commercial Flash authoring applications multiple heap overflows were discovered within Adobe Flash CS3 Professional, and Adobe Flash MX 2004.
SSRT080043-2.txt (6413 bytes)

HP Security Bulletin - A potential vulnerability has been identified with HP OpenView Network Node Manager (OV NNM). The vulnerability could be exploited remotely to gain unauthorized access to data.
iaxscan-0.02.tar.gz (12650 bytes)

iaxscan is a Python based scanner for detecting live IAX/2 hosts and then enumerating (by bruteforce) users on those hosts. It does so, in an obvious fashion, by sending valid IAX/2 requests and monitoring responses.
ie6js-exec.txt (1169 bytes)

Microsoft Internet Explorer 6 suffers from a javascript vulnerability that allows for remote memory disclosure and remote code execution.