hacking contest

hacking exploits security forum
hacking
compliance articles
upgrade backup exec
information security consultant
Help - Search - Member List - Calendar
GovernmentSecurity.org > System Security > Beginners Section
Baccus
Dec 23 2003, 11:29 PM
i scan for found dcom vulnerability ip and i don't know how know if there are a firewall on the server!
Thanks very much for your help wink.gif

ps: i scan with fxscanner


edit: i'v found a scanner for rpc, it's RPCSCAN 2.03 by Foundstone

but he don't write the os and if there are a firewall
Blast3rPL
Dec 24 2003, 09:24 AM
FxScanner ? I think it's only for IIS Unicod but I may be wrong. Share it with us.
daTh0r
Dec 24 2003, 09:29 AM
I think you can add to the Unicodes the signature of the dcom exploit and scan for it... or am i wrong ? dry.gif
batigoooal
Dec 24 2003, 10:06 AM
If you want to see if there is a firewall, try this simple tips. Try to scan ports from 0 to 1100, If you have no open ports you could think threr is a firewall If some ports open (other than 80or 21), there is a lots of chance that there is no firewall or not be well configured.

See ya,
Baccus
Dec 24 2003, 02:37 PM
i've edit the post wink.gif
GSecur
Dec 24 2003, 03:50 PM
Most likely if you have found an ope RPC port the machine does not have a firewall.
Baccus
Dec 25 2003, 01:42 AM
Ok thanks Gsecur ^ ^
koursky
Dec 26 2003, 01:56 PM
thx a lot
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
 
Invision Power Board © 2001-2005 Invision Power Services, Inc.