Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: large scale distributed scan of port tcp 445

From: "Deus, Attonbitus" <Thor () HammerofGod com>
Date: Fri, 09 Aug 2002 15:48:00 -0700

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

At 01:56 PM 8/9/2002, Gary Flynn wrote:


Interesting story. Seems there are a lot of 2k/XP systems out there
without adequate Administrator passwords. No administrator password
means instant access to the C$ share...i.e. entire hard drive including
startup folders. Even a weak password makes the system vulnerable
as the Administrator isn't locked on unsuccessful password guesses
as shipped.


Well, no Admin password in XP means no network access via that account.  By 
default, XP limits accounts with no password to console access only.

AD

-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1

iQA/AwUBPVRGoIhsmyD15h5gEQJyhwCfXkIbIWXa6WqJL+UgMFmfjNj1LJgAoMIR
ZoLqDCqxTcYJvrD/nDbq0e+F
=mb7A
-----END PGP SIGNATURE-----


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
Previous By Date Next
Previous By Thread Next

Current thread: