Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Solaris telnet vulnberability - how many on yournetwork?
From: pagvac <unknown.pentester () gmail com>
Date: Sat, 17 Feb 2007 01:32:26 +0000

The following script might also help find Solaris telnet servers on
your network.

Note: I give no guarantees that it will work

# solaris-telnetd-audit.sh
IPSFILE="./ip-addresses.lst";
MESSAGE="possible Sun Solaris telned found";
EMAIL="youremail () domain com";

for IP in `cat $IPSFILE`
do
        echo "Trying $IP ...";
        if nmap -P0 -n -p23 -sS $IP | grep -i open > /dev/null
        then
                if nmap -P0 -n -p23 -sV $IP | grep -ie 'SunOS' -ie 'Solaris'
                then
                        echo "$MESSAGE on $IP"; echo $IP >>
$0.results; echo $IP | mail -s $MESSAGE $EMAIL
                fi
        fi
done


On 2/12/07, Michael Holstein <michael.holstein () csuohio edu> wrote:
If you run Solaris, please check if you got telnet enabled NOW.

Simple test :

nmap -sV -oG - -p23 your.net/cidr |grep "Sun Solaris"

Cheers,

Michael Holstein CISSP GCIA
Cleveland State University

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



-- 
pagvac
[http://ikwt.com/]

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]