Server initiated remote shell

From: Ilici Ramirez (ilici_ramirez@yahoo.com)
Date: 09/21/01


Message-ID: <20010921142311.32456.qmail@web20808.mail.yahoo.com>
Date: Fri, 21 Sep 2001 07:23:11 -0700 (PDT)
From: Ilici Ramirez <ilici_ramirez@yahoo.com>
Subject: Server initiated remote shell
To: pen-test@securityfocus.com

Hi,

Lets suppose that I can execute a program on an inside
host on a network protected by a firewall. There is no
way in. But there is a way out to www browsing on port
80.

So the client could connect to any Internet address on
port 80. What program should it execute to provide me
with a shell? Of course I'm in Internet with a
listener. What listener?

The firewall is a real statefull firewall so no TCP
ACK or ICMP encapsulations.

Have a nice weekend too.

Ilici R

__________________________________________________
Terrorist Attacks on U.S. - How can you help?
Donate cash, emergency relief information
http://dailynews.yahoo.com/fc/US/Emergency_Information/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



Relevant Pages

  • Re: Server initiated remote shell
    ... Subject: Server initiated remote shell ... execute netcat on remote server such that it sends a connection back to you. ... The netcat listener you setup should display something ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: Server initiated remote shell
    ... Subject: Server initiated remote shell ... Also you use forms to post to URLs using ports other than 80, and craft it in such a way to send arbitrary data to these ports. ... >The firewall is a real statefull firewall so no TCP ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: BSOD minidumps... HELP!
    ... Enquire, plan and execute ... You can rely on the Windows Firewall and do not have ... Requested data was not in memory. ...
    (microsoft.public.windowsxp.perform_maintain)
  • Re: [fw-wiz] Securing a Linux Firewall
    ... If you can execute shell code, ... programs the firewall needs and only put those on the jumpstart CD". ... This means removing all unused packages from the system before creating ... - audit time. ...
    (Firewall-Wizards)
  • Re: Slow and Slower PC
    ... clicking on the Start> Control Panel is slow to execute. ... this very slow time like when booting or when bringing-up AOL, the hard disk ... Here are some links for cleaning malware, ... Make sure a firewall - preferably a 3rd party firewall like Sunbelt Software's Kerio Personal Firewall, Comodo Personal Firewall or Zone Alarm is installed. ...
    (microsoft.public.windowsxp.general)