Full Disclosure mailing list archives
Re: .NET REMOTING on port 31337
From: Fabrizio <staticrez () gmail com>
Date: Fri, 28 Sep 2007 14:18:18 -0400
On 9/28/07, Simon Smith <simon () snosoft com> wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Right, It set off alarms with all of my penetration testers hence why we're researching it. The question I have is, has anyone seen port 31337 respond with the .NET REMOTING banner? Our nmap -A claims that it is .NET REMOTING... just seems weird... Anyone know of any backdoors that do that?
Any decent programmer can write that into their application. Be worried. Fabrizio
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Re: New term "RDV" is born, (continued)
- Re: New term "RDV" is born Epic (Sep 28)
- Message not available
- Re: New term "RDV" is born worried security (Sep 28)
- Re: New term "RDV" is born Jimby Sharp (Sep 28)
- Re: New term "RDV" is born nocfed (Sep 28)
- Re: New term "RDV" is born worried security (Sep 28)
- Re: New term "RDV" is born Valdis . Kletnieks (Sep 28)
- Re: New term "RDV" is born Simon Smith (Sep 28)
- .NET REMOTING on port 31337 Simon Smith (Sep 28)
- Re: .NET REMOTING on port 31337 The Security Community (Sep 28)
- Re: .NET REMOTING on port 31337 Simon Smith (Sep 28)
- Re: .NET REMOTING on port 31337 Fabrizio (Sep 28)
- Re: .NET REMOTING on port 31337 Joel R. Helgeson (Sep 28)
- Re: .NET REMOTING on port 31337 Fabrizio (Sep 28)
- Re: .NET REMOTING on port 31337 Simon Smith (Sep 28)
- Re: .NET REMOTING on port 31337 Fabrizio (Sep 28)
- Re: .NET REMOTING on port 31337 Simon Smith (Sep 28)
- Re: .NET REMOTING on port 31337 Joel R. Helgeson (Sep 28)
- Re: .NET REMOTING on port 31337 Fabrizio (Sep 28)
- Message not available
- Re: .NET REMOTING on port 31337 Joel R. Helgeson (Sep 30)
- Re: New term "RDV" is born Jimby Sharp (Sep 28)
- Re: New term "RDV" is born J. Oquendo (Sep 28)