Scribd Logo
Upload

Welcome to Scribd!

  • Name Service Vulnerable Platforms Mechanism Time To Implement Effect

    Uploaded by

    blinking02
    15 views1 page
    This document summarizes remote to local attacks on various services including telnet, rlogin, pop, imap, ftp, ftp-write, dns, http, and smtp. It lists the service name, vulnerable platforms, mechanism of attack, time required to implement, and potential effect. Common attacks include abuse of misconfigured services to gain user-level access, exploiting bugs to obtain root shell access, and spoofing usernames to obtain passwords. Dictionary guessing is also discussed as a way for attackers to attempt access by guessing passwords across services like telnet, ftp, pop, rlogin, and imap which use username and password authentication.

    Original Description:

    kkendall_thesis1

    Original Title

    kkendall_thesis1

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    This document summarizes remote to local attacks on various services including telnet, rlogin, pop, imap, ftp, ftp-write, dns, http, and smtp. It lists the service name, vulnerable platforms, mechanism of attack, time required to implement, and potential effect. Common attacks include abuse of misconfigured services to gain user-level access, exploiting bugs to obtain root shell access, and spoofing usernames to obtain passwords. Dictionary guessing is also discussed as a way for attackers to attempt access by guessing passwords across services like telnet, ftp, pop, rlogin, and imap which use username and password authentication.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    15 views1 page

    Name Service Vulnerable Platforms Mechanism Time To Implement Effect

    Uploaded by

    blinking02
    This document summarizes remote to local attacks on various services including telnet, rlogin, pop, imap, ftp, ftp-write, dns, http, and smtp. It lists the service name, vulnerable platforms, mechanism of attack, time required to implement, and potential effect. Common attacks include abuse of misconfigured services to gain user-level access, exploiting bugs to obtain root shell access, and spoofing usernames to obtain passwords. Dictionary guessing is also discussed as a way for attackers to attempt access by guessing passwords across services like telnet, ftp, pop, rlogin, and imap which use username and password authentication.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    Download as pdf or txt
    of 1

    Name

    Service

    telnet,
    Dictionary rlogin, pop,
    imap, ftp
    Ftp-write

    ftp

    Guest

    telnet,
    rlogin

    Imap

    imap

    Named

    dns

    Phf

    http

    Sendmail

    smtp

    Xlock

    Xsnoop

    Vulnerable
    Platforms

    Mechanism

    Time to
    Implement

    Effect

    Abuse of Feature

    Medium

    User-level access

    Misconfiguration

    Short

    User-level access

    Misconfiguration

    Short

    User-level access

    Bug

    Short

    Root Shell

    Bug

    Short

    Root Shell

    Bug

    Short

    Bug

    Long

    Misconfiguration

    Medium

    Misconfiguration

    Short

    All

    All
    All
    Linux
    Linux
    All
    Linux
    All
    All

    Execute commands as
    user http
    Execute commands as
    root
    Spoof user to obtain
    password
    Monitor Keystrokes
    remotely

    Figure 8-1: Summary of Remote to Local Attacks

    Users typically do not choose good passwords, so an attacker who knows the
    username of a particular user (or the names of all users) will attempt to gain access to this
    users account by making guesses at possible passwords. Dictionary guessing can be
    done with many services; telnet, ftp, pop, rlogin, and imap are the most prominent
    services that support authentication using usernames and passwords. Figure 8-2 is a plot
    of the connections made to the pop3 port of a victim machine during a dictionary attack
    that is using the pop service to check for valid login/password combinations.

    The

    horizontal axis of this plot represents time in minutes, and each line segment in the plot is
    a single connection to the pop3 service.

    Lines representing succesive sessions are

    71

    You might also like