Home page logo
/

pen-test logo Penetration Testing mailing list archives

RE: linux pen-test
From: "Leandro Reox" <lmet5on () fibertel com ar>
Date: Fri, 5 Aug 2005 02:08:18 -0300

Bruno,

Maybe, you can get something exploiting a bad coded web page, if there is a
dynamic site mounted on that webserver interacting with a db you can get
some access. Other approach is to find bad coded forms or cgis, you can get
a shell with it :D. 
Try injecting and bypassing authentication, sometimes a bad coded web page
worth more than thousands published applications :P

Cheers

-- 
Leandro Reox
http://www.securearg.net/ Secure from the source 

-----Original Message-----
From: Bruno Kovacs [mailto:bruno () saga com br] 
Sent: Thursday, August 04, 2005 3:41 PM
To: pen-test () lists securityfocus com
Subject: linux pen-test

Hi,

Im pen-testing a linux system and I could port-scan the following open tcp
ports:

21
25
53
59
80
110
119
143
443

Strangely, there is this 59 port open. I googled it and it seems to be a
mIRC DCC Server.
Didnt help too much.

I know port 80 and 443 are running Apache 2.0.40 and there are a few bugs
about it,
but nothing really scaring. I cant grab other apps version even with amap.

As I dont have local access, I get frustrated cause the only thing I can
think is exploiting some app remotely.

Any suggestions ?  I need at least a shell.
I´ve looked Metasploit exploits but the are no one appropriate.


Bruno Kovacs (CCSE)

Bruno Kovacs (CCSE)
Saga Sistemas e Computadores S.A.
Tel: +55 21 2518-3161
bruno () saga com br


----------------------------------------------------------------------------
--
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
----------------------------------------------------------------------------
---




------------------------------------------------------------------------------
FREE WHITE PAPER - Wireless LAN Security: What Hackers Know That You Don't

Learn the hacker's secrets that compromise wireless LANs. Secure your
WLAN by understanding these threats, available hacking tools and proven
countermeasures. Defend your WLAN against man-in-the-Middle attacks and
session hijacking, denial-of-service, rogue access points, identity
thefts and MAC spoofing. Request your complimentary white paper at:

http://www.securityfocus.com/sponsor/AirDefense_pen-test_050801
-------------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]