RE: Hacking AS400

From: Joseph Jenkins (joseph@breathe-underwater.com)
Date: Thu Apr 06 2006 - 08:25:20 EDT

• Next message: Clemens, Dan: "RE: Remote Console on MySQL"
• Previous message: Tobias Glemser: "Re: New article on SecurityFocus: Two attacks against VOIP"
• In reply to: culdud@gmail.com: "Hacking AS400"
• Next in thread: Chris Birch: "RE: Hacking AS400"
• Reply: Chris Birch: "RE: Hacking AS400"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

21 and 23 are just the standard telnet and ftp ports. Everything is in
clear text, you can sniff the userids and passwords and find out that
information. The 8xxx and the 449 ports are used by the 5250 emulator
software. More than likely they are running IBM's Client Access software.
Each one of those ports has a separate function, one is data transfer, one
is sign on, and so forth. More than likely you will have an easier time
sniffing for a telnet password, I don't think a lot of people have done any
exploration of those ports.

-----Original Message-----
From: culdud@gmail.com [mailto:culdud@gmail.com]
Sent: Wednesday, April 05, 2006 2:31 AM
To: pen-test@securityfocus.com
Subject: Hacking AS400

Hi all,

Have anyone of u is able to hack into iSeries AS/400 ?

Recently during pentest I found following ports open on one of AS400 box:
21, 23, 449, 8476, 8470, 8472, 8471, 8475, 8473, 8474

I have gathered necessary infromation about these ports. Is there any way b=
y
which we can use these ports to get into this box?

Thanks

Satya

----------------------------------------------------------------------------

--
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to
rise, 
you need to proactively protect your applications from hackers. Cenzic has
the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com for details.
----------------------------------------------------------------------------
--
------------------------------------------------------------------------------
This List Sponsored by: Cenzic
Concerned about Web Application Security? 
Why not go with the #1 solution - Cenzic, the only one to win the Analyst's 
Choice Award from eWeek. As attacks through web applications continue to rise, 
you need to proactively protect your applications from hackers. Cenzic has the 
most comprehensive solutions to meet your application security penetration 
testing and vulnerability management needs. You have an option to go with a 
managed service (Cenzic ClickToSecure) or an enterprise software 
(Cenzic Hailstorm). Download FREE whitepaper on how a managed service can 
help you: http://www.cenzic.com/news_events/wpappsec.php 
And, now for a limited time we can do a FREE audit for you to confirm your 
results from other product. Contact us at request@cenzic.com for details.
------------------------------------------------------------------------------

• Next message: Clemens, Dan: "RE: Remote Console on MySQL"
• Previous message: Tobias Glemser: "Re: New article on SecurityFocus: Two attacks against VOIP"
• In reply to: culdud@gmail.com: "Hacking AS400"
• Next in thread: Chris Birch: "RE: Hacking AS400"
• Reply: Chris Birch: "RE: Hacking AS400"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:55:48 EDT