salam be baro bache ashiyan khaste nabashid
az on ja ke rpcdcom ro portaye tcp :135 -139 -445 -593 va udp :135 ejra mishe va mitone conect she
mikhastam az agha mehdi beporsam chetor kar konim ke ro baghiye porta ham ejra she, ya inke groh ashiyane biyad rpc bara on portaye digeh ro khodesh benevise
thx all babye
yours

In kar gheyre momkene. RPC yani RPC va RPC yani 135. In kar gheyre momkene. In az oon soala bood ke maghze man soot keshid :eek: bacheha torokhoda yekam motalee konid. Please i beg you guys all. Injoori aslan dorost nist. Ma ke soalatoon o ta jayee ke betoonim javab midim ama yekamam khodetoon motalee konid. Khehsh mikonam. In soal yani shoma hata Level e 0 o am nistid yani Underground'id.

k_fathinejad jan, 139 yani NetBIOS oonam exploit aye mokhtalef barakhodesh dareh. Man nemitoonam biyam az Ye protocol estefadeh konam baraye nevehstan e Exploit e ye Protocol e digeh.

Mankhdoam delam bekhoda misoozeh behal e khodam...man tavagho nadaram in soala inja besheh chon ma kheyli zahmat keshidim ke sath e hame bala basheh. :(Man tahala khiyal mikaram hame in soalat baraton ja oftadas bekhoda.

Az farshad o baghiyeye bacheha ke pishraft e ghabele tavajohi dahstan mikham ke be k_fathinejad yekam khosooosi roonet komak konid. PLZ Man bekhoda na vaghteshod aram na hoselasho chon Pis shodam p dige bayad beram bazneshast sham

salam agha mehdi
, ina ro ke gofti midonam
vali man in porta ro dar ye bulitin to ye site didam ke ageh bekhay man linke on sito midam
hala man che gonahi kardam on eshtebah neveshte :D
vali hala to ham ye serach bezani bad nist ok /?
thx
babye

:rolleyes: !!!

salam aghayon
in linki hast ke darbarye dcom (over http va gheyre gofte va on porta ke man dadam)
[Only registered and activated users can see links]


bad hala in site ro ham berid chizaye jalebi dar bareye dcom dare

[Only registered and activated users can see links]

ok
cu
babye

Dooste aziz, man tamam e in ro motaleee kardam. Hamchin chizi ke shoma migid ro aslan toosh naneveshteh. In darbareye scaner tozih dadeh ke scaner begheyr a zport e 135 az 139 va... komak migireh baraye shenasayeee. hamin ;) Movafagh bashid

salam agha mehdi thx
vali man hanooz in teke ro nemifahamam

: DCOM allows an attacker to reach the vulnerability in COM over the network, using any of the following ports:
TCP and UDP ports 135 (Remote Procedure Call)
TCP ports 139 and 445 (NetBIOS)
TCP port 593 (RPC-over-HTTP)
Any IIS [Only registered and activated users can see links] port if COM Internet Services are enabled
Although uncommon, this configuration would allow the vulnerable COM interface to be accessed over any port on which the IIS web service is running.


va badesham zade ke in porta bayad baste she

Administrators of affected machines should install the Hotfix provided by Microsoft immediately. Additionally, filtering the ports listed above and disabling DCOM and COM Internet Services (if enabled) will prevent exploitation of the vulnerability, but may cripple certain Windows services.a blue Ports 135 and 593 can be filtered with very little chance of disrupting services in use on a network, but restricting Intranet traffic on ports 139 and 445 should be done cautiously, if at all


va az onja ke man to mcse 2000 server chizi be esme com ya rpc over ip dideh bodam fek konam in chizi ke neveshte (com over http) dorost bash.


be har hal ma mokhlese agha mehdi ham hastim ke shaki tosh nist

babye
yours

Mostafa jan,

Ini ke shoma migi dorosteh. In tozigihi hast ke eeye baraye DCOm dareh. DCOM e oregina be shoma shell nemideh be shoma Ghabeliyat e ejraye dastoorat ro mideh. oon hacker ha hastan ke estefadeh kardan az oon baraye gereftan e shell az tarigh e [Only registered and activated users can see links] In kari ke ma mikonim va shell ro migirim daghighan COM over HTTP e shaki daresh nist man bala manzooram 139. In amaliyat Az tarigh e 139 anjam nemigireh man n ro motmaenam. Momkene az 139 be in dalil yad kardeh basheh ke dar hamalat e LAN mitoonid shoma az oon baraye be dast avordan e Drive ha estefadeh konid va mesle alan ke username misazim dar systemha az oon tarigh. vagarna be hich onvan RPC ro nemisheh az tarigh e NB anjam dad in yeki az mahalat e. yademoonnareh RPC yani chi. Prespective e ke application mitoonan be soorat e Multiplex rooye shabake be vasileye oon be eshterak gozashteh shan. Pas yani... ;)