Penetration Testing mailing list archives
Null Session
From: "Wbsony" <wbsony () gmail com>
Date: Sun, 6 Mar 2005 23:54:52 +1100
Hi all,Recently, I did some testing on Windows hosts, and found things that confused me.
When I ran: c:\>net use \\host\IPC$ "" /u:administrator The command completed successfully.It was successful, then I can connect to the registry of that particular host remotely.
At first, I thought it was because administrator's password was simply empty password. However, when I ran similar command, with user name that didn't exist in the system, same result occured:
c:\>net use \\host\IPC$ "" /u:blablabla The command completed successfully.I thought maybe just null session issues, but the null session connection was unsuccessful:
net use \\host\IPC$ "" /u:""(Sorry, I forgot the actual results shown, some kind of 'error occured' message).
Anybody encountered this situation before and could enlighten me? Thanks in advance,Wbsony
Current thread:
- Null Session Wbsony (Mar 07)
- Re: Null Session H D Moore (Mar 07)
- Avoiding Postfix Fingerprinting Isidro Labrador (Mar 08)
- Re: Avoiding Postfix Fingerprinting Joachim Schipper (Mar 08)
- Re: Avoiding Postfix Fingerprinting Javier Fernandez-Sanguino (Mar 09)
- Re: Avoiding Postfix Fingerprinting Olivier Fauchon (Mar 09)
- Re: Avoiding Postfix Fingerprinting Michel Arboi (Mar 10)
- Re: Avoiding Postfix Fingerprinting Michel Arboi (Mar 10)
- Avoiding Postfix Fingerprinting Isidro Labrador (Mar 08)
- Re: Null Session H D Moore (Mar 07)