Re: WinPac 2.0

From: Mike Shaw (mshaw@wwisp.com)
Date: 01/11/02 

Date: Fri, 11 Jan 2002 14:56:38 -0600
To: Magnus Ullberg <UllbergM@abcbank.com>, "'pen-test@securityfocus.com'" <pen-test@securityfocus.com>
From: Mike Shaw <mshaw@wwisp.com>

Interesting that you should mention this, because I just worked with
someone who put a system like this in.

 From what I could tell, the 5 digit number on the card is the only
identifier, although I think it's pretty difficult to replicate these
cards. I've wondered about collisions, but I guess until you got upwards
of 5-10 thousand employees, the chances of a collision/birthday effect are
low. It would be interesting to see if you could request a certain number
from a distributor.

Some further interesting info form the northern site
(http://www.nciaccessworld.com):
"The default login and password are: Log In = Admin Password = (leave
blank) no password If the default login and password are no longer in the
software please contact Northern Computers technical support so a
technician can instruct you how to send the database to Northern Computers
so we can reset it to default for you. "
      and....
"The defualt passwords for WIN-PAK are: login = SYSTEM password = startup
These passwords are case sensitive. "

There are also manuals there if you need them. The product is based of an
access database, so I can't imagine that snagging the password would be
that difficult if it's not a default password. If the workstation is
accessible from the network, or it's physically insecure, there may be some
leverage there too.

-Mike

At 11:22 AM 1/11/2002 -0600, Magnus Ullberg wrote:
>Anybody have information about Win-Pac 2.0?
>It is the system used to control doors and manage proximity cards.
>Each card has a 5 digit number on it. Anybody know if that number is the
>only thing that identifies the card or if there
>is some additional info on the card.
>
>Thanks,
>Magnus Ullberg
>Network Coordinator
>
>
>----------------------------------------------------------------------------
>This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
>Service. For more information on SecurityFocus' SIA service which
>automatically alerts you to the latest security vulnerabilities please see:
>https://alerts.securityfocus.com/

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Relevant Pages

  • Re: faster scans? (nmap)
    ... one host using nmap for syn scans in burst mode with the ... >>>This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Re: pen test help please asap
    ... > Machine A on client site makes a configurable encrypted OUTBOUND ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • Re: ettercap help
    ... Anyways have never tried Ettercap for VNC. ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
    (Pen-Test)
  • RE: CFM SQL injection
    ... You should better use union or alike get unauthorized data from the ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)
  • Re: ettercap help
    ... > I can get it to sniff telnet, ftp, pop, smb, but no vnc. ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
    (Pen-Test)