[19605] in bugtraq
Re: Vulnerability in Novell Netware
daemon@ATHENA.MIT.EDU (hhoogend)
Mon Mar 12 12:50:23 2001
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-ID: <Pine.BSI.4.10.10103121003330.9692-100000@xs3.xs4all.nl>
Date: Mon, 12 Mar 2001 10:08:51 +0100
Reply-To: hhoogend <hhoogend@XS4ALL.NL>
From: hhoogend <hhoogend@XS4ALL.NL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <20010309174616.AA87024CBA7@lists.securityfocus.com>
Tested here on a netware 4.11 sp 8a network and yes you can login and got
all inherited container rights. I think it
works only on quebased printing systems and not on NDPS printing systems.
Regards,
Bert Hoogendoorn
h.hoogendoorn@dzh.nl
On Fri, 9 Mar 2001, Derek Wilson wrote:
> Tested the Exploit on Netware 5.1 SP2 with the context and username set to the print server's context and username. I got an error logging in. No password was set for the print server (I don't think its possible). The printer was an NDPS printer. Does this only happen with "public access" printers, or was it a different service pack you tried it on?
>
> Derek Wilson
> wilsond@grandcasinos.com
> PPE Mid-South Region
> (V) 228.604.5106
> (P) 228.516.3945
>
