Full Disclosure: RE: [lists] Terminal Server vulnerabilities

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

RE: [lists] Terminal Server vulnerabilities

From: "Curt Purdy" <purdy () tecman com>
Date: Tue, 25 Jan 2005 14:38:30 -0600

Daniel Sichel wrote:
<snip>

Naturally  I 
don't like this answer because of horror stories I have heard 
about Terminal server. They claim there are no unfixed 
vulnerabilities to Terminal Server on Windows Server 2000 
Service Pack 4.


The problem with terminal server is not any vulnerablities that can be
exploited, but the fact that administrator can be bruteforced (6 attempts
followed by reconnect) and that it is screaming its existence on port 3889.
If you use it, definitely change the port in the registry.

Curt Purdy CISSP, GSEC, CNE, MCSE+I, CCDA 
Information Security Engineer 
DP Solutions 

-----------------------------

If you spend more on coffee than on IT security, you will be hacked.
What's more, you deserve to be hacked.
-- former White House cybersecurity czar Richard Clarke


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

Terminal Server vulnerabilities Daniel Sichel (Jan 24)
- RE: [lists] Terminal Server vulnerabilities Curt Purdy (Jan 25)
  - Re: [lists] Terminal Server vulnerabilities Steve Tornio (Jan 25)
    - RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
    - Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)
    - RE: [lists] Terminal Server vulnerabilities ALD, Aditya, Aditya Lalit Deshmukh (Jan 27)
    - Re: [lists] Terminal Server vulnerabilities Jan Muenther (Jan 27)