From: Joakim Aronius (joakim@aronius.com)
Date: Tue Sep 16 2003 - 10:12:35 EDT
Hi Stephen,
Ericsson made a home appliance called the eBox, first the 101 which later was replaced by the 103. The version number (R4B11) also looks like ericsson. If i remember correctly these boxes were a part of ericssons 'smart home'. They were supposed to be used as home gateways, and it had a web interface which let you turn on and of lamps in your home, verify that you didn't forget the stove on etc.
They also had an additional module which let you stream mp3 and web-radio over the internal network to a small box that one connected to the stereo.
I sat in the same house (Linköping, Sweden) as the guys developing the eBox when i worked in another ericsson project. The eBox project was moved a couple of years ago and AFAIK they hadn't sold any boxes by then. Either they continued the project elswhere and actually sold these things or you have found one of the scrap boxes that were given to employees when we moved from the building. (think i have a couple of these in a closet somewhere...)
Could be that you are connecting from the internet side of the box and they use tcp wrappers to only allow connections from specific IPs (if any).
Cheers,
/Joakim
* Stephen de Vries (stephen.devries@dcode.net) wrote:
>
> Hi all,
>
> I'm seeing some strange behaviour on a host I'm pentesting. It's a linux
> host with port 25,443 and 58000 open. When connection to port 58000 the
> service responds with:
> eB103-uOS R4B11
>
> and then closes the connection. Port 443 is not SSL, it accepts a string
> as input and closes the connection after the first carriage return lf. It
> seems strange and suspicious behaviour, any ideas ?
>
>
> Stephen.
>
>
>
> ---------------------------------------------------------------------------
> FREE Trial!
> New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
> and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
> technology powered by the award-winning FoundScan engine. Try it free for 21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
> ----------------------------------------------------------------------------
---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
technology powered by the award-winning FoundScan engine. Try it free for 21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:40 EDT