Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

plugin 11052

from [Dave King] Network Security [Permanent Link]
Subject: plugin 11052
Date: Thu, 16 Feb 2006 01:02:27 -0700 
Hi-
    I was scanning a computer recently and it flagged plugin 11052 which
says they were able to connect to the host behind the firewall using
source port 20 (connecting to port 8888).  The script is actually very
simple, here's the meat of it.

port = 8888;
   
soc = open_priv_sock_tcp(sport:20, dport:port);
if(soc){
    close(soc);
    soc = open_sock_tcp(port);
    if(soc){ close(soc); exit(0); }
    security_hole(port);
    }

Anyway, using nmap with the -g option I get a result saying the port is
filtered.  Also, trying to connect with nc doesn't work either.  Any
other ideas of ways to verify this one?

Thanks,
Dave

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Traces in Logs Activity, Mara Fernandez
Next by Date:  Re: plugin 11052, Michel Arboi
Previous by Thread:  Traces in Logs Activity, Mara Fernandez
Next by Thread:  Re: plugin 11052, Michel Arboi
Indexes:  [Date] [Thread] [Top] [All Lists]