hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Beginners Section
bambam
Oct 22 2003, 06:33 PM
I can establish a telnet session to my system while in the office
netsat output = xxx.xxx.xxx.xxx:5000 ESTABLISHED

but I am unable to get anyway through it, I want to make sure that no one else can also, there are some other ports as well but I have since shut those down. What is the process for utilizing a vunerability via this method?

regards
just checking to save myself some headaches blink.gif
Grinler
Oct 22 2003, 07:12 PM
Go into you services , and disable the SSDP Discovery Service. Doing this will also disable universal plug and play as that service is required by it.

That should turn off TCP port 5000.
bambam
Oct 22 2003, 07:49 PM
Thanks Grinler
MAeStRo
Oct 23 2003, 12:21 AM
Thanks Grinler smile.gif
Milamber
Oct 24 2003, 01:00 AM
There were a few exploits written for the UPnP vulnerability...Check THIS link for lots of information on them..HERE'S some code for the buffer overflow exploit so you can see how it works...
jubbly
Oct 25 2003, 08:02 AM
Thanx for the info Milamber never knew of this hole. Very helpful and gonna add some firewall rules now smile.gif
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.