Bugtraq mailing list archives
Bay Accelar 1000 series
From: r700ss () YAHOO COM (Steven Hearon)
Date: Mon, 28 Sep 1998 22:43:11 -0700
I dont know if this has been posted if so ignore it please.
For those of you lucky people to have a Bay Accelar 1000 series
here is something you might find interesting..
If one enables the HTTP server (Configuration Interface) on the Bay
Accelar 1000 series (I do not know if this is true on other
Accelars..I have only used Accelar 1200's) anyone can attach to the
main page of the Accelar without a password. Not only this, but one
can surf around a bit before being asked a password as well. The best
part of this is that when one tries to login and fails the system logs
do not show it!!! (Atleast a log show doesn't). Now since Bay likes
to use rw, rwo, and rwa one could use a brute hacker (wwwhack, etc) to
attempt access. Unlike other Bay products there is no option to only
allow certain subnets access to the HTTP server (Atleast none that I
could find, or multiple Bay Reps I talked too knew of). Last time I
talked to a Bay Rep I was told that it was an issue that was being
"looked into", so an easy solution is, do not enable the HTTP server
on your Accelar 1000 series. The damage that could be done is great
(Turning off ports, redoing VLANs, etc).
_________________________________________________________
DO YOU YAHOO!?
Get your free @yahoo.com address at http://mail.yahoo.com
Current thread:
- Re: 1+2=3, +++ATH0=Old school DoS, (continued)
- Re: 1+2=3, +++ATH0=Old school DoS Pete Gonzalez (Sep 27)
- Re: 1+2=3, +++ATH0=Old school DoS John M. Flinchbaugh (Sep 28)
- SHADOW group research indicates distributed probes and attacks Patrick Oonk (Sep 28)
- Re: 1+2=3, +++ATH0=Old school DoS Adrian Gonzalez (Sep 28)
- Modem ATH0 thread route () RESENTMENT INFONEXUS COM (Sep 28)
- IRIX 6.2 passwordless accounts exploit? Dan Stromberg (Sep 28)
- Re: IRIX 6.2 passwordless accounts exploit? D.A. Harris (Sep 28)
- Re: IRIX 6.2 passwordless accounts exploit? Eugene Bradley (Sep 28)
- Re: Solaris non-root login (was: IRIX 6.2 pass...) Richard Yates SPG (Sep 29)
- mountd- more info (sorry) John Caldwell (Sep 28)
- Bay Accelar 1000 series Steven Hearon (Sep 28)
- Re: mountd- more info (sorry) RHS Linux User (Sep 29)
- rpc.mountd vulnerabilities tiago (Sep 29)
- Re: rpc.mountd vulnerabilities morex .- (Sep 29)
- Snork exploit route () RESENTMENT INFONEXUS COM (Sep 29)
- Re: rpc.mountd vulnerabilities Alan Brown (Sep 29)
- IRIX Mail(1)/mailx(1) Security Issues SGI Security Coordinator (Sep 29)
- Re: 1+2=3, +++ATH0=Old school DoS John M. Flinchbaugh (Sep 28)
- IRIX On-Line Customer Registration Vulnerabilities SGI Security Coordinator (Sep 29)
- IRIX mail(1)/rmail(1M)/sendmail(1M) Security Vulnerabilities SGI Security Coordinator (Sep 29)
- Re: rpc.mountd vulnerabilities Olaf Kirch (Sep 30)
- Re: 1+2=3, +++ATH0=Old school DoS Pete Gonzalez (Sep 27)
- ISS Security Advisory: Snork X-Force (Sep 29)