Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

[Fwd: webstar servers and macintosh]

From: Wayne Dunne <wayne () elive net>
Date: Thu, 06 Sep 2001 21:07:20 +0100
--- Begin Message --- From: "Web Manager" <jburke () aea11 k12 ia us>
Date: Thu, 6 Sep 2001 12:22:43 -0700
Sorry,


Please post for me,
Can't post to the list directly but in some versions of webstar
you can DOS the system by typing and "&" in the search box.  If
they are using the sherlock plug-in it won't work but the default
install on 3 and 4 it should work.  Also, try downloading the
index.search page to look for restricted areas.  Usually it is
http://yourserver/index.search this usually reveals some good
info.  I accidentally crashed the Army's new website after they
announced that it was switched to webstar by searching for &...
That's how I discovered it...  Then I tried it on one of our
servers and sure enough, it worked...

Joshua Burke
Web Manager
Heartland AEA 11

"Time is an illusion. Lunchtime doubly so."

-----Original Message-----
From: Wayne Dunne [mailto:wayne () elive net]
Sent: Wednesday, September 05, 2001 2:21 PM
To: pen-test () securityfocus com
Subject: Re: webstar servers and macintosh


1. Check to see if the log files are protected by a realm. the
default is
http://yourserver/webstar.log or
http://yourserver/logs/webstar.log

2. There is a buffer overflow in a version of webstar, i think
its 3.x, its in
the vuln db @ secfocus but their seach is down. You could use
that as a DoS.

3. download the remote admin tools for Web* and Eims and try
the usual passwords etc...

other than that there isnt much you can do to a mac...no shell.
scan for remote admin tools like timbuktoo. see if guest can send
notes or
knock for a reply.

the is a buffer overflow in timbuktoo Ver 4.8 (i think)
telnet to port 407 and pipe a large text file to it will crash
the machine.

if i think of more i'll add it

wayne

"Shea, Tim" wrote:


Hello,

 We are doing a pen-test for a small firm running WebSTAR 3.0.1

and Eudora

Internet Mail Server 3.0 ... Does anyone have any suggestions

for these

services or general tips for pen-testing macintosh networks?

Thanks.
T

---------------------------------------------------------------

-------------

This list is provided by the SecurityFocus Security

Intelligence Alert (SIA)

Service. For more information on SecurityFocus' SIA service

which

automatically alerts you to the latest security vulnerabilities

please see:

https://alerts.securityfocus.com/



-----------------------------------------------------------------
-----------
This list is provided by the SecurityFocus Security Intelligence
Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities
please see:
https://alerts.securityfocus.com/

--- End Message ---
----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/
Previous By Date Next
Previous By Thread Next

Current thread: