Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

[PEN-TEST] Novell Border Manager testing/Trivial Joke?

From: "NetW3.COM Consulting" <netw3 () NETW3 COM>
Date: Wed, 13 Dec 2000 18:10:45 -0600
I'm doing a network assessment and part of their security
relies upon the Novell Border Manager. I have never used
this system so I am pretty clueless, but when I scanned
it's outside IP address with nmap -sS this is what I found:

Port       State       Service
139/tcp    open        netbios-ssn

TCP Sequence Prediction: Class=constant sequence number (!)
                         Difficulty=0 (Trivial joke)

Sequence numbers: 5ADE372 5ADE372 5ADE372 5ADE372 5ADE372 5ADE372

I've not seen a system respond in this way before.

Does anyone have any penetration testing techniques for
Border Manager? If this information is any indication, there
could be room for TCP spoofing attacks. I don't know what
kind of trust mechanisms are in place on the system though.

Thanks

Curt Wilson




=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
| Curt R. Wilson   *   NetW3.COM Consulting    www.netw3.com  |
|    Internet Security, Networking, PC tech,  WWW hosting     |
|  Serving Southern Illinois locally and the world virtually  |
|            netw3 () netw3 com     618-353-7418                 |
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Previous By Date Next
Previous By Thread Next

Current thread: