|
|
| |
| Radmin is a very fast, very powerful remote administrator server available on Win95 and above. Radmin is used by help desks and fortune 500 clients worldwide. The Radmin product has been found to contain weak default settings. |
| |
Credit:
The information has been provided by Michael Scheidell of SECNAP.
|
| |
By default, Radmin uses a known port, TCP port 4899 for remote access. In addition, if you are using password authentication only, a remote user only has to find an open TCP port 4899 and guess one word: your password.
Suggestions:
It is very easy to implement any or all of the following suggestions:
1) Change the default port from 4899 to something else.
2) Use IP addresses filtering to limit the host range if possible.
3) If Radmin is running on NT, Win2k or XP PRO, use WinNT options (enable the NTLM authentication option, "WinNT options") or use a STRONG password.
4) Enable the log file and look for unknown addresses attempting to access your server.
5) Put Radmin behind a Firewall and access via VPN.
|
| Subject:
|
Fake Vulnerabilitiy report |
Date: |
6 Jun. 2008 |
| From: |
Johnjohnl032johnl032mail.ru |
What is the details of this vulnerability ?
Do you have any security advisory about it ?
Is it rumor ? |
|
| Subject:
|
RE: Fake Vulnerabilitiy report |
Date: |
1 Jul. 2008 |
| From: |
Blah |
Oh its true, just blatantly obvious, like the risks presented by any other service that may be protected
by only a password. I am not sure at this point who is being warned as the deployment team would be aware of this. |
|
| Subject:
|
Joke |
Date: |
1 Jul. 2008 |
| From: |
McNet |
There are many vulnerable products in the world ;)
Example: MS RDP - you are know the default port - 3389 and probably username (e. g. administrator), you must to guess only one word - password. |
|
| Subject:
|
This is not an advisory |
Date: |
2 Jul. 2008 |
| From: |
drs |
| There's no advisory here because there's no vulnerability. A default service port isn't a vulnerability. A bad (easily guessable) password is, but not in the product. As in, moving to NTLM authentication from standard authentication nets 0 improvement if the issue is _a weak password_. |
|
| Subject:
|
This is not an advisory |
Date: |
29 Jul. 2008 |
| From: |
Kindlis |
SecuriTeam, you are suggesting using WinNT options (NTLM authentication option) in case of guessable password.
Are you thinking that using username with a guessable password is safe ?
What a lame
-- Editor: we are not suggesting anything, this is the advisory that was published in 2002. |
|
| Subject:
|
Information is not correct - Radmin does not have single password authentication. |
Date: |
15 Nov. 2009 |
| From: |
Alex |
You are not correct.
Radmin does not have an option to use single password authentication.
Here is information from radmin site:
http://www.radmin.com/products/radmin/security.php
|
|
|
|
|
