RE: Help Exploiting MQ

From: Dimitrov, Constantin (cdimitrov_at_micros.com)
Date: 09/01/04

  • Next message: vinay mangal: "Tool to find hidden web proxy server" 
    To: <rick@livingstoncadservice.com>, <tommy@providesecurity.com>
Date: Wed, 1 Sep 2004 11:47:53 +0200

    Message Queuing is a message infrastructure and a development platform for
    creating distributed, loosely-coupled messaging applications for the
    MicrosoftR WindowsR operating system. Message Queuing applications can use
    the Message Queuing infrastructure to communicate across heterogeneous
    networks and with computers that may be offline. Message Queuing provides
    guaranteed message delivery, efficient routing, security, transaction
    support, and priority-based messaging.

    MQ is Message Queueing or upgraded version of RPC.
    For start MQ API is in MQRT.DLL, COM object is also available MQOA.DLL
    Security functions are in MQSEC.DLL.
    For example:
    http://support.microsoft.com/default.aspx?scid=kb;en-us;821144
    Can use certificates ASN.1 DER encoded format
    It's available on servers you need to add it from Add/Remove Windows
    Components.

    Same tools that exploit RPC weaknesses can do the work for MQ

    -----Original Message-----
    From: rick@livingstoncadservice.com [mailto:rick@livingstoncadservice.com]
    Sent: Tuesday, August 31, 2004 9:31 PM
    To: tommy@providesecurity.com
    Cc: pen-test@securityfocus.com; webappsec@securityfocus.com;
    full-disclosure-admin@lists.netsys.com
    Subject: RE: Help Exploiting MQ

    What is MQ?

    ***********************************************************************
    This message is intended only for the use of the intended recipient and
    may contain information that is PRIVILEGED and/or CONFIDENTIAL. If you
    are not the intended recipient, you are hereby notified that any use,
    dissemination, disclosure or copying of this communication is strictly
    prohibited. If you have received this communication in error, please
    destroy all copies of this message and its attachments and notify us
    immediately.
    ***********************************************************************

    > -------- Original Message --------
    > Subject: Help Exploiting MQ
    > From: "Tom" <tommy@providesecurity.com>
    > Date: Tue, August 31, 2004 6:07 am
    > To: full-disclosure-admin@lists.netsys.com
    > Cc: pen-test@securityfocus.com, webappsec@securityfocus.com
    >
    > Does anyone have any tools, techniques on how to exploit weaknesses within
    MQ?
    >
    > Thanks,
    >
    > Tom
    >
    >
    >
    >
    >
    ---------------------------------------------------------------------------- 

    --
> Ethical Hacking at the InfoSec Institute. All of our class sizes are
> guaranteed to be 12 students or less to facilitate one-on-one interaction
> with one of our expert instructors. Check out our Advanced Hacking course,
> learn to write exploits and attack security infrastructure. Attend a
course
> taught by an expert instructor with years of in-the-field pen testing
> experience in our state of the art hacking lab. Master the skills of an
> Ethical Hacker to better assess the security of your organization.
> 
> http://www.infosecinstitute.com/courses/ethical_hacking_training.html
>
----------------------------------------------------------------------------
---
------------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. All of our class sizes are
guaranteed to be 12 students or less to facilitate one-on-one interaction
with one of our expert instructors. Check out our Advanced Hacking course,
learn to write exploits and attack security infrastructure. Attend a course
taught by an expert instructor with years of in-the-field pen testing
experience in our state of the art hacking lab. Master the skills of an
Ethical Hacker to better assess the security of your organization.
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
-------------------------------------------------------------------------------
  • Next message: vinay mangal: "Tool to find hidden web proxy server"

    Relevant Pages

    • [NT] Vulnerability in Message Queuing Allows Code Execution (MS05-017)
      ... Get your security news from a reliable source. ... "Microsoft Message Queuing technology enables applications that are ... A remote code execution vulnerability exists in the Message Queuing ... installed the Message Queuing component could be vulnerable to this issue. ...
      (Securiteam)
    • AW: [IDS] IDS Common Criteria
      ... Europe has a pendant to CC - the Information Technology Security Evaluation ... for ITSEC certifications. ... If you have a security concept and your infrastructure is certified E3/high, ... Unfortunately public sector and common sense ...
      (Focus-IDS)
    • Re: NBC: Public anger will follow our sorrow
      ... nasty, inconvenient things like food inspection, port security, bridge ... It's the incredible growth in entitlement and other social spending ... make massive increases in infrastructure investment. ... The ASCE gave the nation?s infrastructure?including airports, bridges, ...
      (rec.music.artists.springsteen)
    • Re: [fw-wiz] Worms, Air Gaps and Responsibility
      ... >> rely on infrastructure so heavily that need to be in front of it. ... > How many businesses see good infrastructure as an asset, ... Seems to me that this is where a functional risk management process ... Security shows up as ...
      (Firewall-Wizards)
    • Re: Full analysis of the .ida "Code Red" worm.
      ... > all the infrastructure, because, in theory the compromised servers ... This calls to question the attention of systems administrators to ... The days of selective application of security patches are ...
      (Bugtraq)