Bugtraq mailing list archives
Re: AS/400 Vulnerabilities
From: Marco Ivaldi <raptor () mediaservice net>
Date: Mon, 16 Jun 2008 09:55:57 +0200 (ora solare Europa occidentale)
Hello Bugtraq, On Fri, 13 Jun 2008, security curmudgeon wrote:
I would guess there is little research being done on them. The odds of a box falling over due to a few malformed TCP packets, but being resistant or not vulnerable to more complex attacks seems pretty far fetched. While this vendor and technology is widely deployed, it isn't a sexy target for research.
Speaking of AS/400 security research, I'd like to point out the following resources:
http://seclists.org/pen-test/2008/Feb/0083.html http://www.venera.com/downloads.htm http://www.venera.com/order.htm http://www.security-database.com/toolswatch/AS-400-Auditing-Framework-Beta.html Cheers, -- Marco Ivaldi, OPST Red Team Coordinator Data Security Division @ Mediaservice.net Srl http://mediaservice.net/
Current thread:
- AS/400 Vulnerabilities Jon Kibler (Jun 13)
- RE: AS/400 Vulnerabilities Michael Wojcik (Jun 13)
- Re: AS/400 Vulnerabilities security curmudgeon (Jun 14)
- Re: AS/400 Vulnerabilities Marco Ivaldi (Jun 16)
- Re: Summary of AS/400 Vulnerability Information Jon Kibler (Jun 23)