ISS Internet Scanner Brute Force Bug

From: alexander tampermeier (alex_tampermeierat_private)
Date: Wed Feb 17 1999 - 23:54:11 PST

Next message: Alan Cox: "Re: xtvscreen and suse 6"

Previous message: Andre Cruz: "xtvscreen and suse 6"
Next in thread: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Reply: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Reply: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

The Internet Scanner lets you brute force by using username/password
pairs specified in the file default.login. I specified a known
username/password pair but the scanner could not login.
The reason is that the Internet Scanner needs a carriage return after
the last username/password pair. If it finds just an EOF marker then the
password gets modified by adding an additional character.
For example the password test is modified to testo.

Alexander

alex_tampermeierat_private


______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

Next message: Alan Cox: "Re: xtvscreen and suse 6"
Previous message: Andre Cruz: "xtvscreen and suse 6"
Next in thread: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Reply: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Reply: David LeBlanc: "Re: ISS Internet Scanner Brute Force Bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:35:29 PDT