Posts

Showing posts from July 12, 2009

Fake email ??? or ...

Beginilah social engineering yang dilakukan pihak yang tidak bertanggung menggunakan fake email ke victim nya ,

Flag this message
You've received a photo from facebook.com!
Wednesday, July 15, 2009 10:52 AM
From:
"facebook.com"
Add sender to Contacts
To:
artikel@sekuritionline.net


saya melihat header dari email yang masuk
================================================================================

Return-Path:
Authentication-Results: mta131.mail.ac4.yahoo.com from=81-15-214-1.wyrzysk.net.pl; domainkeys=neutral (no sig); from=81-15-214-1.wyrzysk.net.pl; dkim=neutral (no sig)
Received: from 127.0.0.1 (EHLO omta0109.mta.everyone.net) (216.200.145.38) by mta131.mail.ac4.yahoo.com with SMTP; Tue, 14 Jul 2009 20:52:34 -0700
Received: from dm0208.mta.everyone.net (sj1-slb03-gw2 [172.16.1.96]) by omta0109.mta.everyone.net (Postfix) with ESMTP id 7B897648A7; Tue, 14 Jul 2009 20:52:33 -0700 (PDT)
Received: from 81-15-214-1.wyrzysk.net.pl (81.15.214.1 [81.15.214.1]) by dm0208…

hanya mencoba //..\\

Bosan , cari sesuatu , coba-coba deh, siang ini melihat keadaan sekitar saya duduk, sepi banget kantor ini deh, saya cuma test aja sih , bukan bermaksud lain.

Os yang saya gunakan Linux base on Ubuntu , Rhel 5 , saya coba remote ke mesin RHEL 5 , iseng menjalankan

http://www.milw0rm.com/exploits/7262

Microsoft Communicator allows remote attackers to cause a denial of service (memory consumption) via
# a large number of SIP INVITE requests, which trigger the creation of many sessions.

Apalagi disini SIP nya digunakan , alhasil , kurang lebih 1 menit internetnya down , segedung pula jatohnya , ampun dj , gak lupa hapus log dulu takut ke trace :) , lagi saya cuma ujicoba aja ternyata berhasil :D , dari pada bengong gak karuan mending cari ide lagi deh