Bugtraq mailing list archives
Re: Vulnerability in Novell Netware
From: Matthew Firth <matthew.firth () MATERA NET AU>
Date: Mon, 12 Mar 2001 19:39:37 +1100
I don't believe this will work with NDPS printing - you'll need to create an old fashioned queue-based setup. A colleague showed this 'vulnerability' to me a little over 3 years ago on a 4.11 network. However, he was using his own software that was authenticating via API calls, rather than via client32. I thought it was interesting at the time, but assumed it was a known bug after hearing of it from a few other sources. I have just replicated it now on both 4.11 sp9 & 5.0 sp6a servers. However, print server objects created by AXIS NetPilot or HP-JetDirect don't work - they give a 669 error (effectively, incorrect password); that is as opposed to a -601 for object not found. It may fail using Netware clients as they request a number of properties of the authenticated user that might not exist in the schema for a print server object. I tested using "ncpmount" from a Linux box. Matthew -----Original Message----- From: Derek Wilson [mailto:WilsonD () GRANDCASINOS COM] Sent: Saturday, 10 March 2001 3:49 Subject: Re: Vulnerability in Novell Netware Tested the Exploit on Netware 5.1 SP2 with the context and username set to the print server's context and username. I got an error logging in. No password was set for the print server (I don't think its possible). The printer was an NDPS printer. Does this only happen with "public access" printers, or was it a different service pack you tried it on? Derek Wilson wilsond () grandcasinos com PPE Mid-South Region (V) 228.604.5106 (P) 228.516.3945
Current thread:
- Re: Vulnerability in Novell Netware, (continued)
- Re: Vulnerability in Novell Netware Derek Wilson (Mar 11)
- Re: Vulnerability in Novell Netware Brad Bendily (Mar 12)
- Re: Vulnerability in Novell Netware David Howe (Mar 12)
- Re: Vulnerability in Novell Netware hhoogend (Mar 12)
- Re: Vulnerability in Novell Netware Thomas M. Payerle (Mar 13)
- Re: Vulnerability in Novell Netware Jacek Lipkowski (Mar 14)
- Re: Vulnerability in Novell Netware Jon Miner (Mar 14)
- Re: Vulnerability in Novell Netware Brad Bendily (Mar 12)
- Re: Vulnerability in Novell Netware Derek Wilson (Mar 11)
- Re: Vulnerability in Novell Netware Mike Glassman - Admin (Mar 12)
- Re: Vulnerability in Novell Netware Ben Ponting (Mar 12)
- Re: Vulnerability in Novell Netware Scott Smith (Mar 13)
- Re: Vulnerability in Novell Netware Matthew Firth (Mar 12)
- Re: Vulnerability in Novell Netware Simple Nomad (Mar 13)
- Re: FW: Vulnerability in Novell Netware Jeffrey Seaton (Mar 15)
- Re: FW: Vulnerability in Novell Netware Jacek Lipkowski (Mar 16)
- Re: FW: Vulnerability in Novell Netware Krzysztof Halasa (Mar 19)