Re: [FW1] Opening Citrix port 1494 (port exploit DB?)

Mon, 10 Jul 2000 17:17:11 -0700 


I don't think such a thing is possible. By exploits you mean
buffer-overflows or malformed packet attacks, right? These are designed to
kill a process, not a port. So if you're looking to attack a box through
(say) its IMAP server, you can use an IMAP exploit on port 143. But if the
sysadmin has moved IMAP to port 1043 (easily discovered with nmap and nc),
the same exploit will work against port 1043.

HTH
-- 
Jack Coates, Rainfinity SE
t: 650-962-5301 m: 650-280-4376


On Mon, 10 Jul 2000, Paul Keser wrote:

> 
> Along those lines, I've see lists of what ports are used for what
> service.  Does anyone know of a database of exploits by port?
> 
> Thanks
> 
> -PaulK
> 
> "Gregory, David" wrote:
> > 
> > Hello,
> > 
> > Can anyone tell me if there are any vulnerabilities associated with opening
> > port 1494 to anywhere - outbound only?
> > 
> > Thanks in advance!
> > 
> > David K Gregory II   CCSA/CCSE
> > Security Analyst
> > PG&E National Energy Group
> > 301.280.6985
> > 
> > PG&E Generating, PG&E Energy Trading and any other
> > company referenced herein that uses the PG&E name or
> > logo are not the same company as Pacific Gas and
> > Electric Company, the regulated California utility.  Neither
> > PG&E Gen, PG&E Energy Trading nor these other
> > referenced companies are regulated by the California Public
> > Utilities Commission.  Customers of Pacific Gas and Electric Company
> > do not have to buy products from these companies in order
> > to continue to receive quality regulated services from the utility.
> > 
> > ================================================================================
> >      To unsubscribe from this mailing list, please see the instructions at
> >                http://www.checkpoint.com/services/mailing.html
> > ================================================================================
> 
> 
> ================================================================================
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ================================================================================
> 



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Reply via email to