From: Richards, Jim (jim.richards@dot.state.wi.us)
Date: Thu Dec 21 2006 - 14:18:32 EST
Isn't that the admin port for sql-server
the 'sa/no password' security problem that slammer exploited?
-----Original Message-----
From: Mark Foster [mailto:mark@foster.cc]
Sent: Thursday, December 21, 2006 11:09 AM
To: pen-test@securityfocus.com
Subject: Re: Port 1443
kapil assudani wrote:
> Hi Guys,
>
> I was wondering if anybody knew about or stumbled across an open port
1443, and has anything to say about it. Google search brings in Integrated
Engineering Software or another result comes back with 1443-1445 used for
MSSQL2K.
>
> Any insight on this will be highly appreciated.
>
AFAIK MS SQL listens on 1433 and 1434
http://www.iana.org/assignments/port-numbers
Why don't you try nmap -sV -p 1443 <ip-address>
or telnet <ip-address>1443
or openssl s_client -connect <ip-address>:1443
and see what happens? Maybe you'll get a banner or login prompt of some
kind.
-- Some days it's just not worth chewing through the restraints... Mark D. Foster, CISSP <mark@foster.cc> http://mark.foster.cc/
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:57:29 EDT