Home page logo
/

pen-test logo Penetration Testing mailing list archives

Re: [PEN-TEST] LDAP-nullbase
From: spi <securityguru () EARTHLINK NET>
Date: Wed, 20 Sep 2000 18:48:06 -0400

ldap-nullbase basiclly means that you can request a base object of ""
this is sort of the equivelent of doing a "dir c:\"
----- Original Message -----
From: "krisk" <krisk () medshoppeintl com>
To: <PEN-TEST () SECURITYFOCUS COM>
Sent: Wednesday, September 20, 2000 8:01 AM
Subject: LDAP-nullbase


A recent scan on our beta Win 2000 network came up showing a ldap-nullbase
vulnerability.
If I understand this correctly, this is similar to a Win netbios null
session, allowing enumeration of users, shares, etc.

ldap-nullbase basiclly means that you can request a base object of ""
this is sort of the equivelent of doing a "dir c:\"

Does anyone have more info on this? What tools or commands are used to
pull
down directory listings etc. using this? Can this be done remotely? Ports
used? Other methods to test for this? How to secure this?

Any ldap client can be used. ldap is on port 389
just specify a base object of ""

Thanks!

Kris Kistler
Security Admin.
St. Louis, MO



  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault