Vulnerability Development mailing list archives

Re: Open Port on Win98 box

From: tschweikle () FIDUCIA DE (tschweikle () FIDUCIA DE)
Date: Wed, 10 Nov 1999 19:45:10 +0100


We found an open port number 13991 on all Win98 boxes installed. The
port is listening on addess 0.0.0.0 (means to all).

What software does this port reserve? And what is it listening for?


Use a program called Inzider to find out which process is litening (just
like the Unix lsof, but worse ;)

Get it here; http://ntsecurity.nu/toolbox/


This was helpful. I found out this port (and others) where used
by NetFinity. While NetFinity allows taking the whole desktop
of other computers (like Back Orifice does --- but never was
meant to be a "hacker" tool). It might be a back door. There
is only password protection for all services NetFinity provides.
The connection isn't encrypted.

NetFinity is IBM's tool for remote administration.

OT: GkWare Setup program doesn't run on Win98. I've informed the
    author about the problem. Workaround: install on NT4, copy
    the install directory. The programm seems to run.

--
Thomas

Current thread:

Re: Open Port on Win98 box tschweikle () FIDUCIA DE (Nov 10)
- <Possible follow-ups>
- Re: Open Port on Win98 box tschweikle () FIDUCIA DE (Nov 10)
- Re: Open Port on Win98 box Larry W. Cashdollar (Nov 10)