Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Full Disclosure: Full-Disclosure

Argentinean Arnet isp webmail

  

 
Full Disclosure full-disclosure RSS feed   Index | Next | Previous | View Threaded


reallyanonymous at hush

Nov 4, 2009, 3:00 PM

Post #1 of 2 (408 views)
Permalink
Argentinean Arnet isp webmail
Moderate vulnerability in argentinean ARNET isp webmail.

well, there is some kind of weakened authentication on the webmail
of Arnet
(webmail.arnet.com.ar) to access any account all you need is to
guess the first 8 characters of the password, even if the password
is 9,10,11,12,14 or more characters long. This password is the same
than ADSL access acount.

for example:

For this account
johndoe [at] arnet
password:a1a2a3a4a5a6a7a8a9a0

you only need (first 8 character)

johndoe [at] arnet
password:a1a2a3a4

ADSL account in this case is

Name: johndoe [at] arne
Password:a1a2a3a4a5a6a7a8a9a0

there are no anti bruteforce mecanism so you can guess almost any
account within a couple of hours.


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/


etropos at gmail

Nov 6, 2009, 8:38 AM

Post #2 of 2 (395 views)
Permalink
Re: Argentinean Arnet isp webmail [In reply to]
Confirmed, thanks
and POP3 too:

c:\>telnet pop3.arnet.com.ar 110

+OK
user P0*****4241 [at] arnet
+OK please, send your password
pass P0*****4241 >>>>>>>>>>>>>> real password
+OK Welcome to your mailbox !!!
quit
+OK Have a nice day!


Se ha perdido la conexión con el host.

+OK
user P0*****4241 [at] arnet
+OK please, send your password
pass P0*****4 >>>>>>>>>>>>>>> only first 8
+OK Welcome to your mailbox !!!
quit
+OK Have a nice day!

----- Original Message -----
From: <reallyanonymous [at] hush>
To: <full-disclosure [at] lists>
Sent: Wednesday, November 04, 2009 8:00 PM
Subject: [Full-disclosure] Argentinean Arnet isp webmail


> Moderate vulnerability in argentinean ARNET isp webmail.
>
> well, there is some kind of weakened authentication on the webmail
> of Arnet
> (webmail.arnet.com.ar) to access any account all you need is to
> guess the first 8 characters of the password, even if the password
> is 9,10,11,12,14 or more characters long. This password is the same
> than ADSL access acount.
>
> for example:
>
> For this account
> johndoe [at] arnet
> password:a1a2a3a4a5a6a7a8a9a0
>
> you only need (first 8 character)
>
> johndoe [at] arnet
> password:a1a2a3a4
>
> ADSL account in this case is
>
> Name: johndoe [at] arne
> Password:a1a2a3a4a5a6a7a8a9a0
>
> there are no anti bruteforce mecanism so you can guess almost any
> account within a couple of hours.
>
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
> __________ Información de ESET NOD32 Antivirus, versión de la base de
> firmas de virus 4579 (20091106) __________
>
> ESET NOD32 Antivirus ha comprobado este mensaje.
>
> http://www.eset.com
>
>
>


__________ Información de ESET NOD32 Antivirus, versión de la base de firmas de virus 4579 (20091106) __________

ESET NOD32 Antivirus ha comprobado este mensaje.

http://www.eset.com



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Full Disclosure full-disclosure RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.