Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

trojaned Reality Fusion app
From: J Edgar Hoover <zorch () TOTALLY RIGHTEOUS NET>
Date: Fri, 2 Mar 2001 20:02:41 -0800
The executable rfupd.exe included in the Reality Fusion products bundled
with many popular cameras sends the following data to 204.176.10.168 port
80 every time you use the app, reboot your computer or change
configuration.

-----
GET /GCSE/Messages/todolist04.tag HTTP/1.1
If-Modified-Since: Sat, 03 Mar 2001 00:43:39 GMT
If-None-Match: "e9ffe1fc7aa3c01:87a"
User-Agent: RFUPD
Host: www.RealityFusion.com
Connection: Keep-Alive
-----

This is particularly disturbing since the application by its nature
enables video/audio surveillance of the user.

I'm real curious what kind of information is obfuscated in the string
If-None-Match: "e9ffe1fc7aa3c01:87a" too.

Anyone interested in dissecting the (windows) application can find it at
http://totally.righteous.net/rfupd.exe

Cheers,
zorch

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]