[33874] in bugtraq
Re: Remote Administrator 2.x: highly possible remote hole or backdoor
daemon@ATHENA.MIT.EDU (Pavel Levshin)
Fri Feb 20 15:20:54 2004
Message-ID: <000601c3f73c$fb9c2a80$0f1fa8c0@squirrel>
From: "Pavel Levshin" <flicker@mariinsky.ru>
To: <bugtraq@securityfocus.com>
Date: Fri, 20 Feb 2004 02:06:16 +0300
MIME-Version: 1.0
Content-Type: text/plain;
charset="koi8-r"
Content-Transfer-Encoding: 7bit
Hello, LordInfidel@directionweb.com!
You wrote to "'Pavel Levshin'" <flicker@mariinsky.ru>;
<bugtraq@securityfocus.com> on Wed, 18 Feb 2004 13:58:58 -0500:
L> From reading the thread on famatech's site, this looks more like a weak
L> password issue, which is true of "ANY" piece of software
L> using simple password authentication.
The password mentioned there was word "sharpest" (which is not Very Best
choice, but...). The attacker was able to connect on second attempt (first
after portscan, actually). There must be GREAT optimization of dictionary
attack to achieve such result.
With best regards, Pavel Levshin. E-mail: flicker@mariinsky.ru
