[johannes30]

have anyone a vuln checker for port 515?

[isaiah]

As Some have Said Before...

Port 515 is the Universal Port for Print Servers/Daemons. So if you count the number of Print Servers out there (TONS). The likelyhood of getting a Vuln Server running NiPrint, is very small..

The exploit isnt broken.. :)

[agathos]

so if you read correct :)

sprintf(tmp,"telnet ......."\n);
system(tmp);

that means:

he saves the string "telnet ......" into the char tmp!
and runs then over system procedure

[ivan288]

nice exploit but verry hard to find vuln. servers. if anyone has a tool for this please share with us.

[Xion]

it's veru nice exploit I test now :)

[trunks]

i scanned over 400 ips.. no luck yet :huh:

[Xion]

thx for nice exploit

[Knutinho]

Thx for the nice Exploit !!

Anybody able to Link the compiled version onlien again ??

Thx a lot !!

[DerangeD]

compiled it but didn't get any results with this sploit

scanned over 500 ip's

anyone had luck using this ?

[Feuerstein]

i added an option for hostlistfiles, but never ever had a shell. anyone ever got 1 ?

// also codet banner scanner for this purpose. see results below:

*.*.*.*: [/usr/sbin/lpd: zappa: Malformed from address
]
*.*.*.*: [/usr/sbin/lpd: zappa: Malformed from address
]
*.*.*.*: [/usr/sbin/lpd: zappa: Malformed from address
]
*.*.*.*: [/usr/sbin/lpd: zappa: Malformed from address
]
*.*.*.*: [/usr/sbin/lpd: zappa: Malformed from address

which look like *nix servers, and furthermore

*.*.*.*: [lpd: master � � � : Malformed from address
]
*.*.*.*: [lpd: master � � � : Malformed from address
]
*.*.*.*: [lpd: master � � � : Malformed from address
]

which might be nt, but with enabled hostmask :(

already scanned bout 20000 ips, but no exploitation yet