Help identifying modem carriers

From: sophia2521@supanet.com
Date: Mon Dec 19 2005 - 01:41:50 EST

• Next message: Mike: "Don't mess up!"
• Previous message: RaMatkal: "Re: Nessus 3.0 released - nikto, hydra, amap"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi

I recently conducted a war dial as part of a penetration test of
a large companies phone range.

While I was able to identify most of the carriers found there are
a few I need help with, if any one can give me any idea what
these are, specific software/vendor/model details would be great.

Please reply directly and I will summarize to the list.

1)

The first simply asks for a password, it allows 4 tries, a
dictionary attack has so far been unsuccessful. Each character
typed echoes a '#', including the newline.

===== BEGIN LOG =====
CONNECT 2400/ARQ/LAPM/V42BIS

PASSWORD> #####
PASSWORD> ######
PASSWORD> #####
PASSWORD> ######
NO CARRIER

===== END LOG =====

The passwords tried in the example are root, guest, test and
admin.

2)

The second carrier appears to be a terminal server of some kind.
It offers a choice of either shell or ppp login. With the shell
login you get three tries and each character in the password
echoes '*'

===== BEGIN LOG =====
CONNECT 26400
Enter "c" for Solo shell or "ppp" for PPP:c

solo login:root
password:****
solo login:guest
password:*****
solo login:admin
password:*****

NO CARRIER
===== END LOG =====

3)

The third carrier is a simple ']' password prompt. You get three
attempts until you are disconnected with what appears to be a
error code, or possibly a serial number. Again a direction attack
was unsuccessful.

===== BEGIN LOG =====
CONNECT 2400/ARQ/LAPM/V42BIS

]
]
]
0000004E0DD4
+++
===== END LOG =====

Signup to supanet at https://signup.supanet.com/cgi-bin/signup?_origin=sigwebmail

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

• Next message: Mike: "Don't mess up!"
• Previous message: RaMatkal: "Re: Nessus 3.0 released - nikto, hydra, amap"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:17 EDT