NFS on 2049

From: Gilles LAMI (gilles.lami@hays-dsia.fr)
Date: 10/17/02

Previous message: Jeremy Junginger: "Covert Channels"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 17 Oct 2002 09:46:56 -0000
From: Gilles LAMI <gilles.lami@hays-dsia.fr>
To: pen-test@securityfocus.com

('binary' encoding is not supported, stored as-is)

Hello Pen-testers !

I am conducting a pen-test against a Unix machine. Port 111 is firewalled
(tcp and udp) but not port 2049 tcp (I know, it is strange...)
By another way, I confirmed that this was a NFS server on this port.
I looked for a way to get informations to exploit it, directly on the 2049
door but without success ( because of the closed portmap port. )

Any ideas ?
thanks by advance

----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Previous message: Jeremy Junginger: "Covert Channels"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Identify OS?
... The first thing that struck me was port 6112/dtspc. ... This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... This list is provided by the SecurityFocus Security Intelligence Alert ...
(Pen-Test)
RE: Digital UNIX 5.60 recourses
... Find out what is running on what port (use of netcat, nmap, ... >> Subject: Digital UNIX 5.60 recourses ... >This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
(Pen-Test)
RE: Serial Connection Password Cracker.
... This is a tcp socket server that redirects all I/O to a serial port. ... > Subject: Re: Serial Connection Password Cracker. ... >> This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
(Pen-Test)
Re: Config cisco switches against arpspoofing
... switch won't let traffic through unless source MAC address is the one it ... At the interface config option issue "port secure" command, ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ...
(Pen-Test)
RE: How to discover FW-1 management module or GUI?
... Indeed port 257 is the port used by the management console to communicate ... > This list is provided by the SecurityFocus Security Intelligence Alert ... For more information on SecurityFocus' SIA service which ... > automatically alerts you to the latest security vulnerabilities please ...
(Pen-Test)