Penetration Testing mailing list archives
RE: Looks like a Borderware firewall
From: "Fernando Cardoso" <fernando.cardoso () whatevernet com>
Date: Thu, 22 Aug 2002 10:32:27 +0100
Hi again
Hi all, In fact, connecting to https://the_device:442 yields an error message saying I must use the BWClient to connect to it with the big borderware logo on the top of the page... thank you all for your help.
You can grab BWClient from the Borderware website.
BTW, you did not say so but my guess is that the mailserver isan OutlookWeb Access. Am I right? Unicode or ISAPI?Exchange 5.5/MSADC on a broken IIS on the same box.. lotsa things to write in my report! ;)
Been there recently. I had a costumer with a OWA server talking happily to a PDC on the internal network. Guess who got domain admin privileges ;)
But as we are on the subject, does anyone knows what is used as credentials for the Checkpoint? Are there default passwords? I did not found them in my default password lists...
It seems that the default password is "Firewall" with no username. This is valid for the installation, but I guess when you configure it for remote administration you have to assign admin users. I would try a combo of admin/Firewall, root/Firewall, you_get_the_point/Firewall... Cheers Fernando -- Fernando Cardoso - Security Consultant WhatEverNet Computing, S.A. Phone : +351 21 7994200 Praca de Alvalade, 6 - Piso 6 Fax : +351 21 7994242 1700-036 Lisboa - Portugal email : fernando.cardoso () whatevernet com http://www.whatevernet.com/ _____________________________________________________________________ INTERNET MAIL FOOTER A presente mensagem pode conter informação considerada confidencial. Se o receptor desta mensagem não for o destinatário indicado, fica expressamente proibido de copiar ou endereçar a mensagem a terceiros. Em tal situação, o receptor deverá destruir a presente mensagem e por gentileza informar o emissor de tal facto. --------------------------------------------------------------------- Privileged or confidential information may be contained in this message. If you are not the addressee indicated in this message, you may not copy or deliver this message to anyone. In such case, you should destroy this message and kindly notify the sender by reply email. --------------------------------------------------------------------- ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- Re: Looks like a Borderware firewall The Blueberry (Aug 21)
- RE: Looks like a Borderware firewall Fernando Cardoso (Aug 26)
- <Possible follow-ups>
- Looks like a Borderware firewall The Blueberry (Aug 26)
- Re: Looks like a Borderware firewall Alif The Terrible (Aug 26)