Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Need some help

from [Dariusz Swierzewski] Network Security [Permanent Link]
Subject: Re: Need some help
Date: Thu, 13 Oct 2005 15:11:53 -0400 
Thank you very much, we are running Liebert Management Software on the server.
 
Dariusz Swierzewski
Sr. Systems Engineer
dariuszs@homeproperties.com
 
Home Properties of NY
850 Clinton Square
Rochester, NY 14604
Tel:  585-262-9369
Fax: 585-340-5948
www.homeproperties.com


Jerry Heidtke <Jerry_Heidtke@mgic.com> 10/13/2005 3:05 PM >>>


Those are the IANA assigned ports for Liebert's management software. Of 
course, that doesn't mean that's the service listening on that port.

All that the alert means is that the port was open during the initial port 
scan, then after sending a long string to it the port was closed. The 
service name is pulled from the nessus services file, not from any 
specific service identification.

If you system is running Liebert's management software, you probably need 
to upgrade it. Otherwise, use fport or a similar tool to find out what 
executable is listening on those ports and take whatever action is 
appropriate.

Jerry Heidtke, CISSP

Lead Information Security Analyst
MGIC Information Security
414-347-6837


nessus-bounces@list.nessus.org wrote on 10/13/2005 01:43:51 PM:


Good Afternoon,

We are doing a quick vulnerability check on our offsite web server, 
running Windows 2000 Server and IIS.  Just recently we came up with 
the following vulnerability and cannot figure out how to go about 
fixing this - any help would be greatly appreciated.


Vulnerability

LiebDevMgmt_C (3027/tcp)


It was possible to kill the service by sending a single long 
text line.
A cracker may be able to use this flaw to crash your software
or even execute arbitrary code on your system.

Risk factor : High
Nessus ID : 11175 

Vulnerability

LiebDevMgmt_DM (3028/tcp)


It was possible to kill the service by sending a single long 
text line.
A cracker may be able to use this flaw to crash your software
or even execute arbitrary code on your system.

Risk factor : High
Nessus ID : 11175 

Regards

Dariusz Swierzewski
Sr. Systems Engineer
dariuszs@homeproperties.com

Home Properties of NY
850 Clinton Square
Rochester, NY 14604
Tel:  585-262-9369
Fax: 585-340-5948
www.homeproperties.com[attachment "Dariusz Swierzewski.vcf" deleted 
by Jerry Heidtke/MGIC] _______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus

Attachment: Dariusz Swierzewski.vcf
Description: Text document

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Need some help, Josh Zlatin-Amishav
Next by Date:  Re: Need some help, Jerry Heidtke
Previous by Thread:  Re: Need some help, Jerry Heidtke
Next by Thread:  Re: Need some help, Dariusz Swierzewski
Indexes:  [Date] [Thread] [Top] [All Lists]