Penetration Testing mailing list archives
Re: [PEN-TEST] How to test 1 byte password for win9X share
From: ghandi <ghandi () MINDLESS COM>
Date: Wed, 18 Oct 2000 13:30:39 -0600
Fooling around the other night, I added scanning for 1-byte vulnerabilities to NAT (Netbios Auditing Tool). If it can't get into a share without a password, it tries brute-forcing the 1-byte bug. I've only tried this on a Win98 share w/ share-level security, YMMV. Patch is attached. -- ghandi / ghandi () dopesquad net / www.dopesquad.net "Bein' Crazy is the least of my worries." - Jack Kerouac C439 2B06 D8D2 A2D8 1ABB 0A55 A61D 9057 63F5 9B1F On Tue, 17 Oct 2000, Fabio Pietrosanti (naif) wrote:
read the subject ;) using smbclient it doesn't work, so i think there's some kind of padding of the password field. does anyone have more info? naif
Attachment:
nat10-nsfocus-sa2000-05-patch.txt
Description:
Current thread:
- [PEN-TEST] How to test 1 byte password for win9X share Fabio Pietrosanti (naif) (Oct 17)
- Re: [PEN-TEST] How to test 1 byte password for win9X share soren (Oct 17)
- Re: [PEN-TEST] How to test 1 byte password for win9X share Christophe GRENIER (Oct 18)
- Re: [PEN-TEST] How to test 1 byte password for win9X share ghandi (Oct 18)
- Re: [PEN-TEST] How to test 1 byte password for win9X share Dragos Ruiu (Oct 18)
- Re: [PEN-TEST] How to test 1 byte password for win9X share soren (Oct 17)