Full Disclosure mailing list archives
Terminal Server vulnerabilities
From: "Daniel Sichel" <daniels () Ponderosatel com>
Date: Mon, 24 Jan 2005 15:52:55 -0800
I am currently locked in a death struggle with Microsoft's server product group. They have dropped support for the IAS (RADIUS) mmc in server 2003 and the 2000 version won't work under XP SP2. Their solution is to user terminal server to control the server remotely to manage RADIUS. Naturally I don't like this answer because of horror stories I have heard about Terminal server. They claim there are no unfixed vulnerabilities to Terminal Server on Windows Server 2000 Service Pack 4. I find that hard to believe and I know you guys will know if they are full of it, or they are correct. Please let me know ASAP of any CURRENT vulnerabilities int Terminal Server. Dan Sichel Network Engineer Ponderosa Telephone daniels () ponderosatel com (559) 868-6367 P.S. the MMC is worse, it requires that port 139 or 445 be opened, but that is not the point, I suspect they are feeding me a line and I want to prove it. Thanks. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Terminal Server vulnerabilities Daniel Sichel (Jan 24)
- RE: [lists] Terminal Server vulnerabilities Curt Purdy (Jan 25)
- Re: [lists] Terminal Server vulnerabilities Steve Tornio (Jan 25)
- RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
- Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)
- RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
- Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)
- Re: [lists] Terminal Server vulnerabilities Steve Tornio (Jan 25)
- RE: [lists] Terminal Server vulnerabilities Curt Purdy (Jan 25)
- Re: Terminal Server vulnerabilities Valdis . Kletnieks (Jan 27)
- <Possible follow-ups>
- Re: Terminal Server vulnerabilities Daniel H. Renner (Jan 24)