[138] in Best-of-Security


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

BoS: Win95 and null sessions

daemon@ATHENA.MIT.EDU (David LeBlanc)
Sat May 3 00:05:47 1997

Date:         Fri, 2 May 1997 15:12:07 -0400
Reply-To: Windows NT BugTraq Mailing List <NTBUGTRAQ@RC.ON.CA>,
        David LeBlanc <dleblanc@ISS.NET>
From: David LeBlanc <dleblanc@ISS.NET>
Errors-To: best-of-security-request@suburbia.net
To: best-of-security@suburbia.net
Resent-From: best-of-security@suburbia.net

While testing the null session checking for the 4.3 version of the scanner,
we have determined that both IPC$ and ADMIN$ are accessible via a null
session on any Win95 machine where _any_ sharing is enabled.  I think there
is a patch for this, and may be due to some older Win95 installations.

-----------------------------------------------------------
David LeBlanc                   | Voice: (770)395-0150 x138
Internet Security Systems, Inc. | Fax:   (404)395-1972
41 Perimeter Center East        | E-Mail:  dleblanc@iss.net
Suite 660                       | www: http://www.iss.net/
Atlanta, GA 30328               |


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[138] in Best-of-Security

BoS: Win95 and null sessions

daemon@ATHENA.MIT.EDU (David LeBlanc)Sat May 3 00:05:47 1997

daemon@ATHENA.MIT.EDU (David LeBlanc)
Sat May 3 00:05:47 1997