Vulnerability Development mailing list archives

Re: weird bug found

From: netsec () GFI COM (netsec [davidv])
Date: Fri, 9 Jun 2000 15:42:34 +0200


I just made a search for servers which use port 7001 and i found
Applixware server  and
something caleld cloudscape (www.cloudscape.com)

regards,

DavidV

-----Original Message-----
From: marco [mailto:marco () BOFH OBIT NL]
Sent: Friday, June 09, 2000 10:48 AM
To: VULN-DEV () SECURITYFOCUS COM
Subject: weird bug found

Hi,
I was playing a bit on the internet and i found a open port 7001

the actual event:

# telnet host 7001
Trying blabla......
Connected to host
Escape character is '^]'.
#200 Welcome to the PWS registration system!
#200 Please enter your username and passwd to continue
#200 You are accessing this service from  port
pwsars> *
bin boot dev etc home lib logs lost+found mnt proc root sbin
tmp usr var
#201 Unrecognised command!
pwsars> /etc/passwd
/etc/passwd
#201 Unrecognised command!
pwsars> /etc/*
/etc/DIR_COLORS /etc/HOSTNAME /etc/MACHINE.SID /etc/Muttrc /etc/X11
/etc/adjtime /etc/aliases /etc/aliases.db /etc/amd.conf
/etc/amd.net /etc/at.deny /etc/backup /etc/backup_policy
/etc/backup_policy.prev /etc/bashrc /etc/charsets /etc/codepages
/etc/conf.linuxconf /etc/conf.modules /etc/cron.d /etc/cron.daily
/etc/cron.hourly /etc/cron.monthly /etc/cron.weekly
/etc/crontab /etc/csh.cshrc /etc/default /etc/dumpdates /etc/exports
/etc/exports.sample /etc/fdprm /etc/fstab /etc/ftpusers
/etc/gated /etc/gated.conf /etc/gated.conf+
/etc/gated.version /etc/gdc
/etc/gettydefs /etc/gpm-root.conf /etc/group
/etc/group- /etc/gtk /etc/host.conf /etc/hosts /etc/hosts.allow
/etc/hosts.deny /etc/hosts.eqiv /etc/httpd.pid /etc/httpsd.pid
/etc/im_palette-small.pal /etc/im_palette-tiny.pal /etc/im_palette.pal
/etc/imrc /etc/inetd.conf /etc/info-dir /etc/inittab
/etc/inputrc /etc/ioctl.save /etc/isapnp.gone /etc/issue
/etc/issue.net
/etc/ld.so.cache /etc/ld.so.conf /etc/lilo.conf
/etc/lmhosts /etc/localtime /etc/login.defs /etc/logrotate.conf
/etc/logrotate.d /etc/lynx.cfg /etc/mail /etc/mail.rc
/etc/mailcap /etc/mailcap.vga /etc/man.config /etc/midi
/etc/mime-magic
/etc/mime-magic.dat /etc/mime.types /etc/minicom.users
/etc/motd /etc/mtab /etc/networks /etc/nmh /etc/nsswitch.conf /etc/ntp
/etc/ntp.conf /etc/ospf_monitor /etc/pam.d
/etc/paper.config /etc/passwd /etc/passwd- /etc/passwd.OLD /etc/pcmcia
/etc/picasso.apache.backups
/etc/picasso.etc_raddb.backups /etc/picasso.mail_conf.backups
/etc/picasso.n
amed.backups /etc/picasso.passwd.backups
/etc/pine.conf /etc/pine.conf.fixed /etc/pnserver.pid
/etc/ppp /etc/printcap
/etc/profile /etc/profile.d /etc/proftpd.conf
/etc/proftpd.conf.current /etc/protocols /etc/proxy-stats.conf
/etc/pwdb.conf /etc/pws-admin /etc/rc.d /etc/redhat-release
/etc/resolv.conf /etc/ripquery /etc/rmt /etc/rpc /etc/screenrc
/etc/securetty /etc/security /etc/sendmail.cf /etc/sendmail.cw
/etc/sendmail.mc /etc/services /etc/shadow /etc/shadow-
/etc/shadow.OLD
/etc/shells /etc/skel /etc/skel.orig /etc/smb.conf
/etc/smb.conf.orig /etc/smbusers /etc/smrsh /etc/snmp /etc/sound
/etc/sysconfig /etc/syslog.conf /etc/termcap /etc/uucp
/etc/vga /etc/yp.conf
#201 Unrecognised command!
pwsars> quit
quit
#210 Thank you for using PWSARS!
#2101 Goodbye!

# telnet host7001
Trying blabla.....
Connected to host
Escape character is '^]'.
#202 Access DENIED (timeout waiting other connections to die)
#

I could not access it ever since

anyone recognises this ? I was not able to find any docu
regarding this
service.
plz let me know

grtz,
Marco van Berkum
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
System Operator/System Security Analyst
email marco () bofh obit nl
web http://www.obit.nl
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


This disclaimer was sent by Mail essentials for Exchange/SMTP.
Mail essentials adds content checking of inbound and outbound mail,
PGP email encryption, disclaimers, anti virus, anti spam, mail
archiving outbound mail compression, personalised auto replies
and more to Exchange server!

More information on http://www.gficomms.com/mesindex.htm

To send us secure email, use our PGP key below. Mail essentials will
automatically decrypt your message at our Exchange server.

-----BEGIN PGP PUBLIC KEY BLOCK-----

mQBtAze7peIAAAEDAMI1Yd0d6Yox5qVaoDpbMXR9/alPxkXW+My+d95oFx4AxjI/
FGOkBb12hrMsrZrH7Ljm0C3Ek5PUlrV+5XTItehzVF5I0NJzAfmqQvmOwSTHD91M
QzCgD9TpVyBS1JkdcwAFEbQhR0ZJIEZBWCAmIFZPSUNFIDxpbmZvQGdmaWZheC5j
b20+iQB1AwUQN7ul4ulXIFLUmR1zAQHDNQL+OOyhr1+T7irwJNfUI4AX8c9CakPU
h9GkdwxdgrfmMAXjxZvQzZqsgpGe4z2SjWA3nBJS8nvLetb6L8dOmNenfH2/3Ar/
XoLIrLfK7APVcctSBiiA56Q4Gnnl+FQO6oYq
=ZmhW
-----END PGP PUBLIC KEY BLOCK-----

Current thread:

Re: weird bug found netsec [davidv] (Jun 09)
- <Possible follow-ups>
- Re: weird bug found Robert G. Ferrell (Jun 12)
  - Re: weird bug found Jonathan (Jun 13)
- Re: weird bug found Darren Moffat - Solaris Sustaining Engineering (Jun 13)
- Re: weird bug found Mark Collins (Jun 13)
  - Re: weird bug found drgenius (Jun 13)