Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: DCOM Plugin Question

from [jfvanmeter] Network Security [Permanent Link]
Subject: Re: DCOM Plugin Question
Date: Sat, 25 Feb 2006 17:06:11 +0000 
hmmmmmmmmmmm when I search for DCOM in the plugin section on nessus.org, I only 
found  11798.  it most be because I searched by plugin name. 

http://www.nessus.org/plugins/index.php?view=search

Thank you Nicolas, I'll add those two plugin ids to my lisf.

DCOM allows applications to be distributed across locations, the application 
create program ids that can have the default launch and access permissons. 

A user account is added as authentication credentials to  granted permission to 
access/launch the component.  When the user credentials (as a example a service 
account) are add they can recieve the default access and launch permissions. 
Alot of time they don't need the default permissions. 

DCOMCNFG is the tool that comes with Windows that allows you to configure the 
DCOM settings of a COM application.  The application can be listed as a Name or 
by a program ID and its rather painful to manual check each.

Other scanners I've used will report  on what user has what level of access 
and/or  launch permission for a COM object.  When I run an Administrative scan 
using Nessus, i've never see it report on this setting and so far i've been 
unable to find a plugin that does. 

I was thinking of  writting a plugin to check the access and launch permission  
for COM objects. but didn't want to re-invent the wheel and thought I would ask 
to see if anyone else 
has.

Take Care and Have Fun --John

reference
https://www.microsoft.co.ke/technet/scriptcenter/scripts/os/com/default.mspx
http://consumer.installshield.com/kb.asp?id=Q108324



 -------------- Original message ----------------------
From: Nicolas Pouvesle <npouvesle@tenablesecurity.com>

On Fri, 2006-02-24 at 18:29 +0000, JFVANMETER@comcast.net wrote:

Is this the only plugin for DCOM 
 
ID
Name
Family
11798
RPC DCOM Interface DoS
Denial of Service
 


There are 2 other plugins :

11808
11835


Has anyone written a plugin that will check for the default dcom
launch and access permissions? 
 


What do you mean by "default dcom launch" ?


Nicolas

_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus



_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Nessus Digest, Vol 28, Issue 21, nagendra pratap
Next by Date:  a scan hangs my ADSL router, Juan B
Previous by Thread:  Re: DCOM Plugin Question, Nicolas Pouvesle
Next by Thread:  Re: DCOM Plugin Question, Nicolas Pouvesle
Indexes:  [Date] [Thread] [Top] [All Lists]