Bugtraq mailing list archives

Re: Remote Administrator 2.x: highly possible remote hole or backdoor

From: "Pavel Levshin" <flicker () mariinsky ru>
Date: Fri, 20 Feb 2004 02:06:16 +0300

Hello, LordInfidel () directionweb com!
You wrote to "'Pavel Levshin'" <flicker () mariinsky ru>;
<bugtraq () securityfocus com> on Wed, 18 Feb 2004 13:58:58 -0500:

 L> From reading the thread on famatech's site, this looks more like a weak
 L> password issue, which is true of "ANY" piece of software
 L> using simple password authentication.

The password mentioned there was word "sharpest" (which is not Very Best
choice, but...). The attacker was able to connect on second attempt (first
after portscan, actually). There must be GREAT optimization of dictionary
attack to achieve such result.


With best regards, Pavel Levshin.  E-mail: flicker () mariinsky ru

Current thread:

RE: Remote Administrator 2.x: highly possible remote hole or back door LordInfidel (Feb 19)
- Re: Remote Administrator 2.x: highly possible remote hole or backdoor Pavel Levshin (Feb 20)
- RE: Remote Administrator 2.x: highly possible remote hole or back door mgotts (Feb 20)
  - Re: Remote Administrator 2.x: highly possible remote hole or back door Ari Gordon-Schlosberg (Feb 23)