[19673] in bugtraq
Re: FW: Vulnerability in Novell Netware
daemon@ATHENA.MIT.EDU (Jacek Lipkowski)
Fri Mar 16 12:22:54 2001
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-ID: <Pine.LNX.4.21.0103151820180.20903-100000@acid.ch.pw.edu.pl>
Date: Thu, 15 Mar 2001 18:32:28 +0100
Reply-To: Jacek Lipkowski <sq5bpf@ACID.CH.PW.EDU.PL>
From: Jacek Lipkowski <sq5bpf@ACID.CH.PW.EDU.PL>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <saaf9b80.060@tcsinet.tcserve.com>
On Wed, 14 Mar 2001, Jeffrey Seaton wrote:
> Yeah I took a look at this but it is not a problem at all. If a system
> administrator is worried about someone logging in as a print server just
> extend the objects attributes and add a simultaneous login
> attribute. You can set this to 1 and only the print server will
> login. You can do this with Console1 or schemax. These are free
> utilities with Novell.
Yes, but what if you can DOS the print server (hp jetdirect for example
was vulnerable to DOS), or just switch it's power off (printers are
usually in more or less public areas). After a while the printer gets
logged out when it doesn't answer watchdog packets.
BTW, does ChangeToClientRights() work with netware 4.x or 5.x?
Jacek Lipkowski
ps. this vulnerability is hardly new, it was known for several years (in
netware 3.x), I seem to remember some discussion about
ChangeToClientRights() in the nw-hack list
