Bugtraq mailing list archives

GNU SourceNavigator DEMO backdoor(gate,arch de triumphe)

From: elmer_j () UT EE (Elmer Joandi)
Date: Wed, 13 May 1998 08:14:32 +0300


Well, it is useful to do netstat -ae periodicaly.

SN 4.0 demo for Linux listens on first free port on 0.0.0.0 *.*, even if
localhost name is set to 127.0.0.1 (default 0.0.0.0) in SN configuration.

most lovely command after telneting into it is "exec cat /etc/passwd"

There is no direct mentioning of "the feature" in documentation.

even if it can be explained (as everything can), not mentioning "the
feature" in a first place is a serious ...(place your paranoid expression
here)

It comes probably to the point that "there is no such thing as a free
lunch". But if there isn't, look at Sniff, www.takefive.co.at



Elmer Joandi
AS Cybernetica, http://www.cyber.ee/
http://www.ut.ee/~elmer_j/

Current thread:

Re: 3Com switches - undocumented access level.) Aleph One (May 10)
- <Possible follow-ups>
- Re: 3Com switches - undocumented access level.) der Mouse (May 10)
- Re: 3Com switches - undocumented access level.) Riku Meskanen (May 11)
  - GNU SourceNavigator DEMO backdoor(gate,arch de triumphe) Elmer Joandi (May 12)
  - Re: 3Com switches - undocumented access level.) Sasha Egan (May 13)