Pen testing a CVS server

From: Bugsy (bugsy9999_at_yahoo.com)
Date: 05/18/03

  • Next message: Alexandre Carmel-Veilleux: "Re: Pen testing a CVS server" 
    Date: Sun, 18 May 2003 07:17:09 -0700 (PDT)
To: pen-test@securityfocus.com

    Hi,

    Im pentesting a server, which is running CVSpserver. I
    have gone through the CVS documentation and read other
    posts on securityfocus mailing lists. I am listing
    below what I have done so far, and would like to know
    if there is anything else that can be done with this.

    First, trying to login to the pserver with the
    command:

    cvs -d :pserver:root@host.domain.com:/wrong/cvs/root
    login
    yields the information, of whether the repository is
    correct or not. Enumerating this, I have found the
    correct repository.

    Enumerating usernames:
    cvs -d :pserver:luser@host.domain.com:/wrong/cvs/root
    login
    Tells me whether luser exists on the server or not. I
    get luser: no such user if its a non-existent
    username.

    Checking passwords
    cvs -d :pserver:root@host.domain.com:/wrong/cvs/root
    login
    Tells me if i got the root password right or not.

    Is there anything else that can be done. More
    specifically, is there some way to find out the
    version of the CVS server, without being able to
    login.

    Also, now that CVS server is that popular, shouldn't
    they build in basic security measures such as giving
    the same failure message whether the username,
    password or repository is wrong?

    -Bugsy

    __________________________________
    Do you Yahoo!?
    The New Yahoo! Search - Faster. Easier. Bingo.
    http://search.yahoo.com

    ---------------------------------------------------------------------------
    *** Wireless LAN Policies for Security & Management - NEW White Paper ***
    Just like wired networks, wireless LANs require network security policies
    that are enforced to protect WLANs from known vulnerabilities and threats.
    Learn to design, implement and enforce WLAN security policies to lockdown enterprise WLANs.

    To get your FREE white paper visit us at:
    http://www.securityfocus.com/AirDefense-pen-test
    ----------------------------------------------------------------------------

  • Next message: Alexandre Carmel-Veilleux: "Re: Pen testing a CVS server"

    Relevant Pages

    • Re: Login without password
      ... Sue has provided you with great resources to resolve your issue. ... Protection Program and to order your FREE Security Tool Kit, ... |>How can I delete the login and add it back? ... I migrate the server from ...
      (microsoft.public.sqlserver.security)
    • Re: Unknown Domain user - domain authentication appears limited
      ... (using cached login). ... Microsoft MVP (Windows Server System: Security) ... > due to the following error: Logon failure: the user has not been granted ...
      (microsoft.public.windows.server.security)
    • RE: Penetration test of 1 IP address
      ... I have been asked to perform a security audit of 1 IP address ... You could grab the banner of the HTTP server or run p0f (if you are using ... Another test would be trying to login as ie admin with the company's name ... Audit your website security with Acunetix Web Vulnerability Scanner: ...
      (Pen-Test)
    • Re: Well done HSBC
      ... The security firm know ... the server usually lets you have a couple of time units either way. ... If login fails and then succeeds, ... security code. ...
      (uk.comp.sys.mac)
    • Gallery is still vulnerable to Cross-site Scripting attacks
      ... After testing out the updates to CVS for Gallery, I realized it is still vulnerable to the cross-site scripting attacks that was mentioned in the first advisory. ... * to ensure security. ... someone put their album URL on a gopher server... ...
      (Bugtraq)
    • Quantcast