Wana find an exploit on your system? Do this....

Osiris · 08-29-2007, 07:50 PM

Open the cmd prompt

Type in cd \ and press enter

Replace the x with your server IP address or home computer IP address

C: \>net use \\xxx.xxx.xxx.xxx\ipc$ "" /u:""

After you press enter, you should see The command completed successfully. If you don't see it, well then this exploit has been disabled.

It appears to me that even if you have the policy disabled and reg edits defined, this message still appears at least on my XP, I need to test it out on my server at work

Let us know the results

Chase · 08-29-2007, 08:09 PM

Tell me more about what this does monster...I'm interested...

::-Chase-::

Osiris · 08-29-2007, 08:17 PM

Anyone that makes a netbios connection to your computer can get a full accounting of usernames, shares, permissions, policies, services and more. The syntax connects to the IPC Inter Process Communication (IPC$) at IP XXX.XXX.XXX.XXX with the built-in anonymous user (U:"") with ("")null password. When connected, a communication channel is now established for an attacker to use.

Chase · 08-30-2007, 04:52 PM

Wow...good thing access is denied in my case...thanks for the information...

::-Chase-::

Member Login