Penetration Testing: Kaseya

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Penetration Testing mailing list archives

Kaseya

From: "M.B.Jr." <marcio.barbado () gmail com>
Date: Sat, 24 May 2008 16:01:21 -0300

Hello list,
there's this infrastructure tool set for automating managed services,
named Kaseya (proprietary technology).

Basically, the managed-services-provider controls one of his
customers' remote LANs with two intercommunicating "appliances":

  * a Kaseya dedicated server located at the MSP data center; and

  * a "probe" equipment at the remote LAN.

The audit team to which I belong is about to examine the probe-featured LAN.
Right now, we're researching whether this "solution" can cause the LAN
some weaknesses;
the resulting research's report is going to shape the logical tests.

So, the question is (I guess):
does anyone know of any Kaseya-enhanced LAN security implication/vulnerability?

Thank you,
yours sincerely,


-- 
Marcio Barbado, Jr.

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes 
in Securing Web Applications  
Find out now! Get Webinar Recording and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------

By Date By Thread

Current thread:

Kaseya M.B.Jr. (May 24)
- RE: Kaseya Shenk, Jerry A (May 26)
  - RE: Kaseya Kevin Reiter (May 28)
  - Re: Kaseya M.B.Jr. (May 28)
- Message not available
  - Re: Kaseya M.B.Jr. (May 28)
- RE: Kaseya Kevin Reiter (May 28)