Vulnerability Development mailing list archives
weird bug found
From: marco () BOFH OBIT NL (marco)
Date: Fri, 9 Jun 2000 10:48:14 +0200
Hi, I was playing a bit on the internet and i found a open port 7001 the actual event: # telnet host 7001 Trying blabla...... Connected to host Escape character is '^]'. #200 Welcome to the PWS registration system! #200 Please enter your username and passwd to continue #200 You are accessing this service from port pwsars> * bin boot dev etc home lib logs lost+found mnt proc root sbin tmp usr var #201 Unrecognised command! pwsars> /etc/passwd /etc/passwd #201 Unrecognised command! pwsars> /etc/* /etc/DIR_COLORS /etc/HOSTNAME /etc/MACHINE.SID /etc/Muttrc /etc/X11 /etc/adjtime /etc/aliases /etc/aliases.db /etc/amd.conf /etc/amd.net /etc/at.deny /etc/backup /etc/backup_policy /etc/backup_policy.prev /etc/bashrc /etc/charsets /etc/codepages /etc/conf.linuxconf /etc/conf.modules /etc/cron.d /etc/cron.daily /etc/cron.hourly /etc/cron.monthly /etc/cron.weekly /etc/crontab /etc/csh.cshrc /etc/default /etc/dumpdates /etc/exports /etc/exports.sample /etc/fdprm /etc/fstab /etc/ftpusers /etc/gated /etc/gated.conf /etc/gated.conf+ /etc/gated.version /etc/gdc /etc/gettydefs /etc/gpm-root.conf /etc/group /etc/group- /etc/gtk /etc/host.conf /etc/hosts /etc/hosts.allow /etc/hosts.deny /etc/hosts.eqiv /etc/httpd.pid /etc/httpsd.pid /etc/im_palette-small.pal /etc/im_palette-tiny.pal /etc/im_palette.pal /etc/imrc /etc/inetd.conf /etc/info-dir /etc/inittab /etc/inputrc /etc/ioctl.save /etc/isapnp.gone /etc/issue /etc/issue.net /etc/ld.so.cache /etc/ld.so.conf /etc/lilo.conf /etc/lmhosts /etc/localtime /etc/login.defs /etc/logrotate.conf /etc/logrotate.d /etc/lynx.cfg /etc/mail /etc/mail.rc /etc/mailcap /etc/mailcap.vga /etc/man.config /etc/midi /etc/mime-magic /etc/mime-magic.dat /etc/mime.types /etc/minicom.users /etc/motd /etc/mtab /etc/networks /etc/nmh /etc/nsswitch.conf /etc/ntp /etc/ntp.conf /etc/ospf_monitor /etc/pam.d /etc/paper.config /etc/passwd /etc/passwd- /etc/passwd.OLD /etc/pcmcia /etc/picasso.apache.backups /etc/picasso.etc_raddb.backups /etc/picasso.mail_conf.backups /etc/picasso.n amed.backups /etc/picasso.passwd.backups /etc/pine.conf /etc/pine.conf.fixed /etc/pnserver.pid /etc/ppp /etc/printcap /etc/profile /etc/profile.d /etc/proftpd.conf /etc/proftpd.conf.current /etc/protocols /etc/proxy-stats.conf /etc/pwdb.conf /etc/pws-admin /etc/rc.d /etc/redhat-release /etc/resolv.conf /etc/ripquery /etc/rmt /etc/rpc /etc/screenrc /etc/securetty /etc/security /etc/sendmail.cf /etc/sendmail.cw /etc/sendmail.mc /etc/services /etc/shadow /etc/shadow- /etc/shadow.OLD /etc/shells /etc/skel /etc/skel.orig /etc/smb.conf /etc/smb.conf.orig /etc/smbusers /etc/smrsh /etc/snmp /etc/sound /etc/sysconfig /etc/syslog.conf /etc/termcap /etc/uucp /etc/vga /etc/yp.conf #201 Unrecognised command! pwsars> quit quit #210 Thank you for using PWSARS! #2101 Goodbye! # telnet host7001 Trying blabla..... Connected to host Escape character is '^]'. #202 Access DENIED (timeout waiting other connections to die) # I could not access it ever since anyone recognises this ? I was not able to find any docu regarding this service. plz let me know grtz, Marco van Berkum ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ System Operator/System Security Analyst email marco () bofh obit nl web http://www.obit.nl ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Current thread:
- Re: krb5 1.1.1 Trevor Schroeder (May 31)
- Re: krb5 1.1.1 Mariusz Woloszyn (Jun 05)
- ADV: /con/con is yet exploitable on most fservs Paulo Ribeiro (Jun 07)
- Re: ADV: /con/con is yet exploitable on most fservs Cam (Jun 08)
- Re: A<D>V: /con/con is yet exploitable on most fservs Niall Smart (Jun 08)
- weird bug found marco (Jun 09)
- Re: weird bug found hypoclear - lUSt - (Linux Users Strike Today) (Jun 09)
- ie5 and .doc URLs Olivier Thereaux (Jun 09)
- Re: ie5 and .doc URLs Chris Tobkin (Jun 09)
- Re: ie5 and .doc URLs Olle Segerdahl (Jun 09)
- mdaemon 2.8.5.0 DoS Craig (Jun 09)
- Re: ie5 and .doc URLs security-lists () SERVER KAPOW DK (Jun 09)
- Re: ie5 and .doc URLs Jason Haar (Jun 11)
- ADV: /con/con is yet exploitable on most fservs Paulo Ribeiro (Jun 07)
- Re: krb5 1.1.1 Mariusz Woloszyn (Jun 05)
- Re: krb5 1.1.1 horio shoichi (Jun 07)
- <Possible follow-ups>
- Re: krb5 1.1.1 horio shoichi (Jun 02)