• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Port 37

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses

View previous topic :: View next topic  
Author Message
snootalope
Just Arrived
Just Arrived


Joined: 14 Jan 2003
Posts: 4
Location: IA _ USA

Offline

PostPosted: Fri Feb 14, 2003 5:05 pm    Post subject: Port 37 Reply with quote

morning guys..
looks like Apache 1.3.26 running on Linix with more ports open then needs to be.. I see that port 37 is open, which is a "time" port.. I've searched for exploits on it, no go.. I did read that it is a weakness though.. anyone know anything relavent about a port 37 weakness?
Back to top
View user's profile Send private message AIM Address Yahoo Messenger MSN Messenger
myhatisred
Just Arrived
Just Arrived


Joined: 11 Jan 2003
Posts: 0


Offline

PostPosted: Fri Feb 14, 2003 8:28 pm    Post subject: Reply with quote

I honestly don't think that you could do much with a time port
Back to top
View user's profile Send private message Visit poster's website AIM Address
dissolutions
Just Arrived
Just Arrived


Joined: 15 Dec 2002
Posts: 2


Offline

PostPosted: Fri Feb 14, 2003 8:39 pm    Post subject: Reply with quote

Can't you just block the port with your firewall?
Back to top
View user's profile Send private message Send e-mail
snootalope
Just Arrived
Just Arrived


Joined: 14 Jan 2003
Posts: 4
Location: IA _ USA

Offline

PostPosted: Fri Feb 14, 2003 8:41 pm    Post subject: Reply with quote

why yes i could... but I'm looking at someone elses's web server.. Rolling Eyes
Back to top
View user's profile Send private message AIM Address Yahoo Messenger MSN Messenger
Sgt_B
Trusted SF Member
Trusted SF Member


Joined: 28 Oct 2002
Posts: 16777215
Location: Chicago, IL US

Offline

PostPosted: Fri Feb 14, 2003 10:24 pm    Post subject: Reply with quote

From: http://www.net.ohio-state.edu/security/services/scan/iss-4.3.7/manual/appena.html

Linux Time Bomb

The inetd running the TCP time services, daytime (prot13) and time (port 37) will crash if you send excessive SYN packets. Once inetd crashes, all other services running through inetd will no longer work. The scanner attempts to exploit this vulnerability.

Caution! Exercised caution as the inet daemon may go down on a vulnerable host.

Risk: Medium

OS Vulnerable: Linux

Fix: Turn off the two services in TCP mode. Alternatively, switch to xinetd.


Either way, close this port.
Better yet, get a firewall in front of that webserver.
Back to top
View user's profile Send private message Visit poster's website
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Exploits // System Weaknesses All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register