Full Disclosure mailing list archives

Re: IBM mqseries

From: Frederic Charpentier <fcharpen () xmcopartners com>
Date: Wed, 25 Jan 2006 19:15:16 +0100

hi indianz,

There's a checklist but it's for admin, not really for pentesting :
http://middleware.its.state.nc.us/middleware/Documentation/html/csqsav00/csqsav003t.htm

There's no known vulnerabilities or exploits.

You can consider reviewing the conf files, but that's all.

Fred
indianz () indianz ch wrote:

Hi list

I'm wondering, if anybody already had to deal with IBM mqseries
(http://www-306.ibm.com/software/integration/wmq/) security. Does anybody
know about known flaws or bugs, misconfigurations or
similar stuff about this technology?

Any input welcome, thanks in advance...

GreetZ from IndianZ

mailto:indianz () indianz ch
http://www.indianz.ch

--
Frederic Charpentier - Xmco Partners
Security Consulting / Pentest
web  : http://www.xmcopartners.com/tests-intrusion.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

IBM mqseries indianz (Jan 25)
- Re: IBM mqseries Frederic Charpentier (Jan 25)