[16109] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Firewall-1 Session Agent, DOS and password thief

daemon@ATHENA.MIT.EDU (Dug Song)
Mon Aug 7 13:23:53 2000

MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-ID:  <Pine.BSO.4.20.0008070855190.31027-100000@naughty.monkey.org>
Date:         Mon, 7 Aug 2000 09:02:28 -0400
Reply-To: Dug Song <dugsong@MONKEY.ORG>
From: Dug Song <dugsong@MONKEY.ORG>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To:  <20000804220456.10709.qmail@hotmail.com>

On Fri, 4 Aug 2000, gregory duchemin wrote:

> 220 FW-1 fake session authentication
> 331 User:
> 331 *FireWall-1 p4ssw0rd pleazzz:
> 200 User has now a clone, c3rb3r
> 230 OK

this was originally reported to BUGTRAQ two years ago, with an exploit.

	http://msgs.securepoint.com/cgi-bin/get/bugtraq/687/1.html

-d.

---
http://www.monkey.org/~dugsong/


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[16109] in bugtraq

Re: Firewall-1 Session Agent, DOS and password thief

daemon@ATHENA.MIT.EDU (Dug Song)Mon Aug 7 13:23:53 2000

daemon@ATHENA.MIT.EDU (Dug Song)
Mon Aug 7 13:23:53 2000