Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

RE: Strange scan on 1433
From: "David LaPorte" <david_laporte () harvard edu>
Date: Tue, 21 May 2002 11:23:13 -0400
They're looking for MS-SQL servers with blank/default sa passwords that are
missing the MS02-020 patch:

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
bulletin/MS02-020.asp

We've been getting killed with these since yesterday.

David LaPorte

-----Original Message-----
From: Pavel Lozhkin [mailto:pavel () atrivo com]
Sent: Tuesday, May 21, 2002 9:38 AM
To: incidents () securityfocus com
Subject: Strange scan on 1433


I got a lot of scans today on port 1433 from numerous nets (part of them
are .jp and .kr, but not all)
Does anyone know what they're looking for on the port ?
I've never been scanned on the port before.

--
Pavel

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]