hey all, ive heard around that hacking on port 4000 was a good exploit any1 knows anything about it???

command and conquer !
ICQ
skydance use port 4000

its not a exploit

maybe its icq sploit like yim 5.5 sploit

Little do you know

Well... as A newcomer to this board, guess ill share....

Tutorial, by me originally posted at cz-fxp & CE back in May:



Now this isnt really 'Hacking' its more looking for dumb people who are too lazy to change thier default password in this case its 'trial'

Okay what u need...

* sfind (the neat little command line scanner)
* RA (Remote Anything) (( hxxp://wxw.twd-industries.com ))
youll need to get the keygen frum astalavista or sumthin.
* Sl(ScanLine) (hxxp://wxw.foundstone.com)

Start by running Sfind -p 4000 <start ip> <end ip>

okay you got your happy sfind.txt file? kay then...
edit out the port 4000 listening thingy
load up sl(scanline) in a dos window and run
sl -bhpt 4000 -f sfind.txt -o vuln.txt
let it run and in a few seconds in the same folder u got a file called vuln.txt
big shock, tuff stuff so far eh?
aight...
we go through the results on vuln.txt

Anything that looks like

-------------------------------------------------------------------------------
66.*.*.*

Responds with ICMP unreachable: No
TCP ports: 4000


TCP 4000:
[3.7.4]

-------------------------------------------------------------------------------
is potentially vulnerable... also anything

like this

-------------------------------------------------------------------------------
66.13.*.*
Responds with ICMP unreachable: No
TCP ports: 4000


TCP 4000:
[. |\ |\ |\\ |\\ | \| | \| | | |-|_|-|A|-|_|-| |-|_|-|A|-|_|-| \ _________ / \ _________ / |_|__|__|_| |_|__|__|_| \-,_ |__|__|__|| ||__|__|__| _,-/ , \ --, |]

-------------------------------------------------------------------------------

with just a garbled mess at the end = potentially vulnerable

you just wanna ignore like vpn servers and other dumb crap ppl run on the port

so now we gotta check the results
load up Ra_Master or whatever u named it
and click the edit box, fillin in the following fields:

ip address: <duh?> the ip addy of the server your checking
port: <duh again?> always 4000 for this
password: trial


after all that happy crap is filled out click 'save modified'
and double click the server you just added in the window
youll either get 'building view'(good rabbit, msg)
or 'bad password'(bad rabbit, no cookie msg)
You may also get a 'slave master mismatch do you want to update the slave now' say no, we're lazy ****s
In closing, dont forget to delete the ra_slave.txt
or ra_slave.log file on root of c:

if you get in close the view window of the remote desktop, click on 'file transfer' and upload your files to the remote machine in the bottom pane...
Thats about it... now on to a short Q&A:

Q.) But wait Nexy, RA doesnt allow us to execute stuff whut do we do?

A.) Yes, it does, right click on the title bar of ra in the view remote screen.

Q.) Does this shit really work? Are People really stupid enough not to change thier default password?

A.) Yes, and yes.

-Nexcess
27, May 2003
undead001 at hotmail.com

omfg not u again, pathetic DDz whoe, fused went down, ce is under control little by little, going down soon aswell