From: full-disclosure-bounces () lists grok org uk [mailto:full-disclosure-
bounces () lists grok org uk] On Behalf Of Sabahattin Gucukoglu
Sent: Friday, October 01, 2010 3:17 PM
To: full-disclosure () lists grok org uk; bugtraq () securityfocus com
Subject: Re: [Full-disclosure] Warning: BrailleNote Apex Offers Read/Write
FTP And Telnet Access To All Comers
On 1 Oct 2010, at 22:57, Thor (Hammer of God) wrote:
⠠⠊⠋ ⠃⠁⠙ ⠛⠥⠽⠎ ⠁⠗⠑ ⠕⠝ ⠽⠕⠥⠗ ⠝⠑⠞⠺⠕⠗⠅, ⠽⠕⠥ ⠼⠚⠼⠉⠼⠊;⠗⠑ ⠎⠉⠗⠑⠺⠑⠙ ⠁⠝⠽⠺⠁⠽
(If a bad guy is on your network, you're screwed anyway)
With those services closed, it doesn't take a five-second run of nmap and
wget to ransack the owner's device, though. And since network shares are
mounted inside the filesystem, that's a double win for the poor sod who has
his corporate shares in his stored network places. No, it can't actually get
worse than this. I'm not even sure it's accidental. I'm not taking chances.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/