Vulnerability Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: network appliance...

From: leg () TERRA COM BR (Luiz Eduardo Gava)
Date: Wed, 12 Apr 2000 14:01:58 -0300

On 10 Apr 2000, at 21:16, JT wrote:

has anyone heard of vulnerabilities in the Network Appliance base operating
systems? they're the company that makes large filer head systems and my
company is considering buying one. the operating system is unix or unix based
but an nmap scan on known open ports in demonstration showed absolutely
nothing -no operating systems id either.i was curious as to whether this is
really assafe as it seems...


Uh ? No open ports ? What kind of network server has no open ports ?
Here's a nmap of a netapp:

nmap -O netapp.nfs.server.com

Starting nmap V. 2.30BETA17 by fyodor () insecure org ( www.insecure.org/nmap/ )
Interesting ports on netapp.nfs.server.com:
Port       State       Service
23/tcp     open        telnet
80/tcp     open        http
111/tcp    open        sunrpc
139/tcp    open        netbios-ssn
514/tcp    open        shell
603/tcp    open        unknown
605/tcp    open        unknown
607/tcp    open        nqs

TCP Sequence Prediction: Class=random positive increments
                         Difficulty=51226 (Worthy challenge)
Remote operating system guess: NetApp OnTap 5.1.2 - 5.2.2

Nmap run completed -- 1 IP address (1 host up) scanned in 5 seconds

LEG!----------------------------------
Luiz Eduardo Gava - leg () terra com br
Terra Networks - Porto Alegre - Brasil
--------------------------------------

/"\
\ /
 X ASCII RIBBON CAMPAIGN - AGAINST HTML MAIL
/ \
Previous By Date Next
Previous By Thread Next

Current thread: