Hackersafe: Blind MS SQL Injection Vulnerability

Tutorials Win: Microsoft Windows Forum

- Previous
  - 1
    - Unauthenticated Network Hi Everyone, I have one user with a Vista Business Notebook, whose network (in Network and Sharing Center) keeps changing to Unauthenticated. Once it changes to Unauthenticated, they are unable to access any network resources, including the internet. After a reboot, the Unauthenticated part goes away again - But it seems to come back a few times a day. Has anyone else seen this before? The Notebook was added with the wizards. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394082
  - 2
    - Domain Name Question I struggled with this one and finally figured it out but I want to understand what is going on with this network. Single DC on the network. When I looked at all of the domain members under computer properties, the domain name only reads "local". I also looked under the active directory on the server and the computer properties of the server and it was listed as "local". I assumed that someone prior to me had set this up as a single level DNS domain name. So I tried to add a member with "local" as the domain name and it continued to fail. So eventually I noticed that if I browsed the network on a workstation that was already part of the domain the domain name was actually "DOMAIN". So I tried to add the member with this name and it worked. But it still displays as simply "local" when viewed under computer properties, under active directory on the DC, etc. Why is the FQDN not showing. I expect it to be displayed as "DOMAIN.local"?? Is there a group policy setting that hides this part of the domain name. All is working fine I just wanted to understand why this is happening? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394072
  - 3
    - OT? OWA, Calendar item, categories... How does one enter or edit these. A user wants to categorise some of the new calendar items (appt's) they are making. Is this possible via OWA? -- Duncan Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394071
  - 4
    - clicking send in OWA puts the message in drafts... OWA runs perfectly on the server. The server is SBS 2003 Premium SP2. Outside of the LAN, OWA runs fine except for two things. FIRST: You can't open the contacts. SECOND: When you click on send the window reloads to the Exchange main page and the message is put in the Drafts folder. What do I need to do that will fix it. David. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394059
  - 5
    - Exchange mailboxes cannot be retrieved by Outlook I have a problem that involves SBS2003, Exchange Server and POP3 mail. Brand new installation, all patches and SP applied. Currently using POP3 from ISP until domain name based accounts can be set up, and will need to continue it for several months until all clients are converted to new email addresses. Outgoing email works fine (forwarded to host). POP3 retrieval works, and appears to deliver the messages to the appropriate mailboxes. The event log has no errors. Shows opening the pop3 accounts, downloading, and delivering, then closing out. I can go into message tracking and search for and pull up messages for any given user. They're all there w/ dates, times, who from, etc.). Of course, I can't read the emails - just know that they are there. And that's one of my questions: is there any way to actually read these emails? When I try to retrieve these emails via Outlook 2003 (SP3, all patches), it finds nothing there. I have tried reconfiguring Outlook settings (removing the Exchange account, rebooting, adding the Exchange account again). All that did was to delete all the cached info on the local workstation and give me a blank account. I definitely have the correct login/passwords on the Exchange accounts. On day 1, the email was actually working, then stopped on day 2 for no known reason. ie: absolutely no changes to Exchange or POP3 settings. Only change that day was to install Kaspersky's Enterprise Space Security, which appears to be functioning correctly. So my questions are: Is there any way to read those emails if I cannot retrieve them through Outlook? Is it a POP3 problem, an Outlook problem, an Exchange problem, or a Kaspersky problem? Any chance that uninstalling and reinstalling the POP3 connector would help? Is there anything that you can think of that would cause this? Even without an answer, any ideas on direction for troubleshooting would be greatly appreciated. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394054
  - 6
    - Only top level portion of domain name displays on domain members I struggled with this one and finally figured it out but I want to understand what is going on with this network. Single DC on the network. When I looked at all of the domain members under computer properties, the domain name only reads "local". I also looked under the active directory on the server and the computer properties of the server and it was listed as "local". I assumed that someone prior to me had set this up as a single level DNS domain name. So I tried to add a member with "local" as the domain name and it continued to fail. So eventually I noticed that if I browsed the network on a workstation that was already part of the domain the domain name was actually "DOMAIN". So I tried to add the member with this name and it worked. But it still displays as simply "local" when viewed under computer properties, under active directory on the DC, etc. Why is the FQDN not showing. I expect it to be displayed as "DOMAIN.local"?? Is there a group policy setting that hides this part of the domain name. All is working fine I just wanted to understand why this is happening? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394045
  - 7
    - External File Access I have a SBS 2003 server & I would like to give access to files to external users who are clients not SBS users. Each client would have there own store folder and needs to be secure Would seperate FTP server be the best or is there something im missing? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394043
  - 8
    - Need help deploying software via Group Policy Management We are trying to roll out the Office 2007 compatibility pack company wide. We are using the group policy manager to do so, and are assigning it by computer rather than user. On out test computers the program is installing successfullly, but it looks like its doing it even if it was manually installed beforehand. Thats not the big issue though. The big problem is this- Computer A and computer B both get tossed in the group and on their next reboot they both install the desired software. Then on computer A the program gets removed for some reason. Next time it is restarted and logged into it does not reinstall the software. Why? It is still in the same group as before. We thought maybe if we gave it a day it would reinstall, but no such luck. Thanks for the help. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394042
  - 9
    - Fax doesn't anwser Hello, i have fax services configured on my server to do automatic answer after 1 ring(mdem is a motorola SM56 pci modem), but it isn't working, i dial and it rings, rings, rings, nothing. if i open the modem status page and chose to manually answer, THEN it says "ringing" and answers. my phoneline is behing supplied by a linksys SP2100 ATA adapter. if i put any kind of pots telephone on the line and dial to it, it rings perfectly. any ideas? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394038
  - 10
    - Setup Routing on SBS for I/net as well as for access to L-o-B web- Dear All, Can anyone help me with the following issue: At one of my Customer location, we had setup SBS 2003 R2 Prem. as the Main & only Server. As the customers wants the access of the server from outside. We had configure RASS with a Static Public IP on the external LAN Card connected to a DSL Router (Router configured in Bridge Mode to ISP's Internet) and a 192.168.0.1 Static IP on the Internal LAN Card. DHCP is also configured on the SBS Box. Internet Access on Server is fine. Server is accessible through RDP outside the premises over Internet. Current Scenario -------------------------------------------------------------------------------------------- 1. Currently my Customer is having about 10~15 client computers. 2. My Customer business is related to telecom, so all his client computers are supposed to access certain L-o-B web-apps, of which access is provided, by the, parent telecom company. All these L-o-B web-apps are (in a way) intranet website of the parent telecom company. 3. To access these L-o-B web-apps, all client computers are configured with a Static IP from the parent telecom company. 4. Connectivity to access Static IP = They have another DSL Line from the same parent telecom company, on which Internet access is blocked, but Intranet access is available. This DSL line is terminated into a DSL Router. The DSL Router is connected to a Switch (Semi-Managed, but currently being used as an unmanged switch only, as no services are configured) and all client computer are also connected to this Switch -------------------------------------------------------------------------------------------- Now, the prob. is as under: We have to configure the SBS Server to route both: 1. The Internet Access & 2. The Access to the L-o-B Web-apps We want to get away with the static IP's provided by the parent telecom company as managing them in a workgroup environment is becoming too much a prob. And at the same time we would like to move to DC environment for better usage & control of the resources and environment. I'm having the prob., as to how to route the traffic of the client machines once connected to SBS Server via. switch to access the L-o-B web-apps of the parent telecom company? Please help! Any guidance is this regard will be of great help. Thanks, Warm Regards, Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394031
  - 11
    - New Exchange domain The company has sold and has a new name (therefore new domain.com). I know I can't change the domain without a reinstall. That is not necessary in this case anyway. How do I change the Exchange email from david@abc.com to david@xyz.com? What happens to all the old mail in the old stores? Can they be moved? Thanks, David Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394027
  - 12
    - activesync over air error 0x85010001 setting up 1st mobile phone version 6, activesync 4.5? first of all, i set up my iphone with imap and it is ok. we have a purchased ssl cert. phone refueses to sync, reports 85010001. it does not ask me to re-enter the user credentials, so that's probably correct. eventvwr: Unexpected Exchange mailbox Server error: Server: [server-name.DOMAIN.local] User: [user@website.com] HTTP status code: [400]. Verify that the Exchange mailbox Server is working correctly. i've tried: checked permissions in IIS for virtual dir, all 3, exchange, oma, activesync. security access, and non require ssl. -as listed in numerous threads. no luck. checked the iis metabase, and Dynamic Compression (2 settings) were already set to FALSE. i turned off ip address filtering, so all addresses are granted for oma if i open a browser to https///exchange-oma itpops up a clear text auth window, i can login and see the folders and messages. the phone still gives same error code, and server the same error. the phone settings only keeps the website address, not the https, nor the /exchange-oma, so that must be automatic. exchange server is up and running and the same user is in outlook on his workstation, no problems. ? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394025
  - 13
    - Plain Text vs HTML in exchange Hi, Suddenly I receive emails in plain text in where all images come as attachments -- not part of email body. When I reply, or forward it goes out as plain text. In option mail format i have specified for outgoing mail is HTML. Any idea how to fix this??? Thanks Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394023
  - 14
    - Fax Server on SBS 2003 We bought an 8 port fax modem and it all works well for all client OS except Vista SP1. We have a few Vista machines but it never installs the network fax printer off of the SBS 2003 server? IS there a workaround to do this? I am assuming that Windows 2003 OS does not have the appropriate drivers for the Vista Network printer - is this correct or logical assumption? What would be the workaround? thanks. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394011
  - 15
    - Anyone using AVG8 on their SBS box? Need some advise on which While I wait for Grisoft to get back to me, I figured I'd get a faster answer here. Going to eval AVG8 since I've been using the free AVG for a few years and am happy with it. They have a version for "file servers" AND a version for "email servers", but what I have is both. My server is for file/print and email. Will the "email servers" version do both? What I'm hoping for is a single product that protects the server, gives me workstation software AND email scanning capabilities. Hopefully AVG does this in 1 product otherwise I'll have to keep searching. I think I evalled another product that worked that way. Thanks, Roveer Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 394000
  - 16
    - CompanyWeb Fax Viewing Error I have some users getting this error when hitting the link that arrives in their Outlook Inbox for an inbound fax alert. They can still push through and view the fax but I don't understand why they are getting the error. General FAilure. The URL was: http://companyweb/incoming%20Faxes/1CBAC51E3D848.tif. an error occured in sending the command to the application Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393996
  - 17
    - Email Integration options? Moving users from pop3 Outlook express to I'm getting ready to move my users (a whopping 4) from their old environment of Outlook Express & pop3 to our SBS box with Exchange. I need to deal with their old pop3 mail as they will want to retain it and in one case (company owner) who has an extensive mailbox of messages all tucked in folders on the sent and received side. No way to get him to get rid of it. I noticed while testing that my Outlook client noticed a OE account and offered to import it. What options are available to me? I guess I could import their pop3 accounts into outlook and that would give them access to their old mail? Does it put it locally, or into the exchange store? Are there any other options that I should be considering? Any good links on email integration/upgrade I should be looking at? Thanks, Roveer Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393972
  - 18
    - Delete Messages from Administrator Account I'm running SBS2003 Server. The Administrator Exchange account has 22,000 messages now. How can I delete all of them efficiently? None of the messages are needed. Thanks, Paul Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393964
  - 19
    - My documents redirection error - Old server still trying to sync Hi, I've redirected to another server than the SBS 2003 box. Files have been moved as they should everything seems to be working fine except for one client that keeps popping up about computers being offline. The computer in question is the SBS 2003 that is no longer storing the My documents for our employees. Any ideas on how to stop this error? If I go to my explorer and choose Tools-Synchronize I only see the new server as I should. I guess that it's a registry error of some kind. Kim Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393962
  - 20
    - Problems with RWW and WSUS Running SBS 2003 Premium, Exchange 2003, SQL 2000, ISA 2004, WSUS 3.0, WSS 3.0, 2-NIC's. ============== Been chasing my tail the last week or so trying to get WSS, company web and WSUS to all work at the same time. Still no luck so I thought I'd put out the details and see if anyone has ideas that I can use to fix them. WSUS - clients not reporting in. I got my PC in once I used dcomcnfg. Haven't tried it yet on the other computers or servers. WSUS is retrieving updates and notifying me - console works well. I suspect a setup/permissions problem that bis related to the RWW problem. I can access http://companyweb and http://<servername> fine (WSS 2.0 and WSS 3.0, respectively) fine. Server Usage Report is not viewable; I get "Server Error in '/Monitoring' Application". http://<servername>/remote and http://<servername>/exchange both result in HTTP 404 errors. Nothing in Event Logs. ISA 2004 BPA - no errors. SBS BPA - Warning items: "Sharepoint instance does not use SQL Server 2000 SP4", and "STSVersion registry key is at RTM version" In IIS Manager: Websites: Default - (192.168.16.2), ASP.NET version 2.0.50727, 127.0.0.1 and 192.168.16.0/24 granted access, Anonymous and Integrated Authentication checked -ClientWebService, all the same, but Authentication set to Anonymous only -Remote, ASP.NET version 1.1.4322, access the same, Anonymous and Integrated Authentication checked -SelfUpdate, ASP.NET version 2.0.50727, access the same, Anonymous Authentication only method checked Sharepoint Central Administration - (all unassigned), ASP.NET version 2.0.50727, all granted access, Integrated Authentication only method checked Microsoft Sharepoint Administration - (all unassigned), all the same but Authentication has both Anonymous and Integrated checked Sharepoint Central Administration - (all unassigned), - ditto - Windows Media Administration Site - (all unassigned), - ditto - WSUS Administration - (all unassigned), - ditto - [all subfolders have Anonymous Authentication as only one checked] companyweb - 192.168.16.2, ASP.NET version 1.1.4322, all granted access, Anonymous and Integrated Authentication checked WSS 3.0 - (all unassigned), ASP.NET version 2.0.50727, all granted access, Integrated Authentication is the only method checked Sharepoint - 27679 - (all unassigned), same as above TIA! -- Mike Webb Platte River Whooping Crane Maintenance Trust, Inc. a conservation non-profit (501 (c)(3)) organization Wood River, NE Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393945
  - 21
    - I did not install "fax service" on fresh SBS install but now I want When I built my SBS box I elected to NOT install fax services. In hindsight I think this was a mistake since it has been requested. First let me ask the question. If fax service was installed and running on SBS can my users FAX from Exchange? What has been requested is that when sending an email some recipients don't have email and do have fax machines. My users would like to address email and fax users when composing an email and thus have the fax only users receive this email via their fax machines. Does the SBS fax service allow this capability? If it does, Is there a way to go about installing fax services into an already existing SBS install, and if so, how would I do this. Thanks, Roveer Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393944
  - 22
    - SBS2003 R2 Update Services message... There are updates scheduled for installation.... Etc thru ... manual intervention is required. Had this now for the past few months; perhaps even longer. I just assumed the message would disappear sooner or later...<VBG>... has in the past. Not sure how to get rid of it. I have NO systems pending updates AFAIK. For whatever reason a week or two back I had to DECLINE all of the language packs... not sure what caused that either, but I've had the above message longer than the language pack offering. Anyone? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393941
  - 23
    - Outlook 2003 We have a SBS 2003 server standard edition, one NIC with exchange and external router, 40 users. This network has been running perfectly until last week. One user has issues sending emails via Micorosft Outlook 2003 to certain users in their contact address book. The emails will show up under the sent items folder but they never arrive at the recipient, no non deliver report or errors are generated. Emails do not show up under exchange server mail queue. Only 3-4 people are effected with this issue, emails are sent and received by everyone else. I have removed the addresses that are causing this problem then re-entered them, re-installed outlook, repaired the inbox, checked the email quotas but to no avail. Any help would be appreciated Charlie Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393937
  - 24
    - Incoming mail not working with POP3 connectoer - Outgoing is fine Hi, Having problems setting up my email on exchange. used the CEIW and supplied it with all the relevent details as supplied by networksolutions and I can send email ok but receive it? Can anyone help. Cheers Andrew Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393936
  - 25
    - Mystery Logins NG, I see messages like this occasionally. Should I be concerned about this attempt at unauthorized access or is this related to the system in some way? Logon Failure: Reason: Unknown user name or bad password User Name: webmaster Domain: Logon Type: 3 Logon Process: Advapi Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0 Workstation Name: xxxxxxx Caller User Name: xxxxxx Caller Domain: <domain name> Caller Logon ID: (0x0,0x3E7) Caller Process ID: 11840 Transited Services: - Source Network Address: - Source Port: - -- Thanks, Bill V SBS ROCKS! http://www.adelphiaseafood.com http://sbsbill.blogspot.com/ Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393933
- Next
  - 1
    - CRM 4.0 Workgroup on SBS 2003 R2 Hi I have just upgraded SQL to 2005 SP2 and installed Report Services, taking care to ensure the SharePoint site was still available according to MS guidelines (this is fine). However when I try to install CRM it requests the existing Report Services site, which doesn't actually exist - If I look at Default Web Site I can see virtual directoryes - ReportServer$Sharepoint and ReportServer$CRM - am I supposed to use one of these? Thanks! JB Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393927
  - 2
    - Getting Administrator access to roaming profile folders, need some I've set up Roaming profiles but can't access the folders from my administrator account. I read a post that says I have to do the following: 5. If you want the administrators group to automatically have permissions to the profiles folders, you'll need to make the appropriate change in group policy. Look in computer configuration/administrative templates/system/logon - there's an option to add administrators group to the roaming profiles permissions. Where exactly do I find this? I'm a bit new to SBS and policies so I'm not quite sure where to find it. Please be specific. Thanks, Roveer Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393922
  - 3
    - =?ISO-2022-JP?B?SXQncyBub3cgb3IgbmV2ZXIbJEIhIxsoQnNob3BwaW5nIGluIG91ciBjb21wYW55IHRvIGdldCBi?= It's now or never$B!#(Bshopping in our company to get beijing2008 keepsake golden suppliers,lowest prices .cover all brand products accept PAYPAL .Prices are at the lowest notch.air jordan air max R3 R4 NZ TN shoes . http://www.elecserver-yhnetstore.cn Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393921
  - 4
    - Sharepoint companyweb alert issues We are using Sharepoint 2.0 for document and vacation calendar sharing. Recently we've promoted the DC from an SBS box to a Windows Server 03 Stnd box but have kept Sharepoint on the SBS server. I am trying to configure the alerts to send from companyweb.domain.local, they do reach the intended recipients but the links within the alerts point to companyweb.com directing them out to the internet, not back to the SBS server. My account works properly but I am setup as an admin on on the SBS server - not sure if that matters, all users alerts are set the same. Any suggestions? Thanks, Chad Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393919
  - 5
    - Licensing on SBS.. that 75 limit Hi All, Does anyone know what *technically* happens if you go over the 75 user/computer limit of SBS ? Also, has anyone here applied the transition pack before (to a non-R2 system) ? If so how did it go? I've been warned about having to remove IE7, uninstall Exchange SP2 and a bunch of other nightmares that makes me want to delay installing the Transition pack, and need to know what will happen.. Thanks, Adrian Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393915
  - 6
    - Internet Access with ISA 2004 We have ISA 2004 installed W/SBS 2003 . I would like to control internet access. I would have some users with full access to the internet and i would like to allow only certain web sites for other users (all different). What is the easiest way to set this up. I had it set up in ISA 2000, but when we upgraded, i seem to have lost all that configuration. I have read alot of posts, but they all seem to refer to blocking certain sites, not allowing certain sites. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393912
  - 7
    - USEREVT Errors 1058 and 1030 Hello, Over the past week or so, our server (2003 SBS) has been hanging up network connections / mappings. It spits out these two errors; Userenv / Event ID: 1058 Description: Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=domain,DC=com. The file must be present at the location <\\domain\sysvol\domain\Policies\{31B2F340-016D-11D2-945F-00C04FB984F9}\gpt.ini>. (Access is denied. ). Group Policy processing aborted. For more information, see Help and Support Center at http://support.microsoft.com. Userenv / Event ID: 1030 Description: Windows cannot query for the list of Group Policy objects. A message that describes the reason for this was previously logged by the policy engine. For more information, see Help and Support Center at http://support.microsoft.com. A reboot seems to fix it temporarily. I've followed the link on one of the events and it gave me a procedure on making sure the domain name was correct in the registry, it was. The server hangs up connections maybe twice a day. Any suggestions would be appreciated! Thanks, George Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393910
  - 8
    - OWA hi just been informed that the secretary views her bosses email via owa , (inside the network), via home page , & this used to be ok, she could flag & read / delete as necessary, and all the emails would stay in there until the boss connected his notebook and recieved them , now she says that when she checked this morning it had 80 emails in there, & she just checked it again this afternoon and it only had 11 new emails in it, she said that the boss has not been into his account all day, so im wondering where they could have gone to ?? or be stored ??, Hope this makes sence to someone out there and you can offer help please, Gregory -- Message posted via http://www.winserverkb.com Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393879
  - 9
    - nOOb question --- Can I get my browser to use port other than 80 to I'm not a technical guy, but I always curious about technology. I read a lot, from many online sources, but as a non-technical guy, there are things that get me very confused. I guess I am not smart at all. For example, I know that the Web Browsers, be it Internet Explorer or FireFox or Safari, all use port 80 for web browsing. I guess part of the reason they do that is because it's the common standard, and part (as I read the materials from many online sources) is because of security. But I still want to know, as a user, can I change my browser so that I'd use, let's say, port 3863, to browse, instead of the default port 80? (That is assuming port 3863 isn't reserved for any other purposes.) If the answer to the above is a "Yes", then I would like to know further. Such as -- Let's say I change my browser so that it uses port 3863 instead of port 80. Can I still successfully uses it to browse websites as usual? But before that, how to make my browser, - let's say I am using Internet Explorer, version 7, - how to get IE7 to use port 3863 instead of port 80, for browsing purposes? Would changing from port 80 to port 3863 poses any security risk? Is there anywhere online that I can get more information regarding questions such as these? I've tried to find the answer. Unfortunately, most of the sites assume that their visitors are already technicaly savvy, unfortunately for a dumb person like me, the more I read their articles, the more blur I get. I think what I mean is, is there any down_to_earth place online that give dimwits such as yours truly a very basic idea of what is a port, how to change port, how to forward port, how to change browser configuration, et cetera .... If you happen to know of such places, would you kindly share it with this dumb fella, will ya, please? Thank you !! Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393876
  - 10
    - SMTP Queues "hang" intermittently I have a problem at one of my accounts that has me stumped. Occasionally (and recently more oftent) SMTP queues for a particular receiving domain will just hang. And they will stay that way for days and more. Sometimes stopping/starting the information store will clear one or more of them, but perhaps not all. Sometimes running eseutil might free things up. But there doesn't seem to be any consistency. One day, each time I stopped/started the exchange services, a queue would clear. But then I had to do it again until another one cleared. Once they are all cleared, they might run fine for a good while; but then it happens again. This is really frustrating for me and even more so for my client. I can see nothing in the event log that might indicate what is happening. I have SMTP logging turned on but not really sure what to look for there to see what might be causing this. When it happens it is not all email. Some domains go through just fine. But when the queue for a domain gets stuck, all email for that queue is stuck. Please; is this something that there is a know reason for and is there a fix. Any help will be GREATLY appreciated. BobS Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393866
  - 11
    - Stop 51/Registry_Error/Constant reboot Hello, Shut down server for some electrical work. When starting back up server winds up in a loop, with a error 51/Registry_Error. Last changes that were done were FTP Service install, and allowance of new IP address's for external access' about 2 weeks ago. I can boot the machine in safe mode, so I removed the FTP Service (add/remove programs). Still having the problem. Noticed this error in event log right before machine reboots. Event ID: 4275 Error parsing XML file. Reason: XML document must have a top level element. Incorrect XML ErrorCode : 0xC00CE558 Interceptor : 14 OperationType : Populate Table : MBProperty ConfigurationSource : file:///C:/WINDOWS/system32/inetsrv/MetaBase.xml Row : 0 Column : 0 File was empty, so I just renamed it. Error does not show up anymore, but machine still reboots. Any ideas ? Thanks, Steve Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393862
  - 12
    - SBS2003 Premium OEM and SQL2000 Good evening! Simple question: with SBS2003 Premium OEM is it possible (not asking if it is legal or not....I already know the answer to that question....there is a reason that I am asking this question) to install SQL2000 on a different box? Thanks, Cary PS. Fully aware that that this is not legal - for a couple of reasons (1 - OEM and 2 - EULA of SBS2003 Premium). Now, what if this were a retail version of SBS2003 Premium? Or a Volume License version? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393828
  - 13
    - Some mail not getting through. Lately we have been informed that a small amount of folks are having their email bounced back by us. It is usually whole companies (domains). I have half heartadly tried to remedy this until my wife told me she no longer can send email to our domain and has ordered me to fix it. The bounceback message. -----Original Message----- From: InterScan Notification [mailto:postmaster@dhdchicago.com] Sent: Monday, May 05, 2008 4:38 PM To: Megan Finkelman Subject: Mail could not be delivered ****** Message from InterScan Messaging Security Suite ****** The following mail could not be delivered. Reason: Unable to deliver message to <brucef@emptybottle.com>. ************************ End of message ********************** I think that interscan is another word for Trend Micro SMB which we have (version 3.6). But I think her company has it as well as it seems their system bounced the message. Any ideas how I can track this issue? Thanks in advance. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393820
  - 14
    - Problem with Connect Computer Wizard I am setting up a new SBS 2003 R2 Standard Server and Win XP Pro workstations. The server has only one NIC. I am having problems setting up the workstations. I was successful on the first computer, after initial problems, but I donâ??t remember what I did. I have internet connectivity, but when I try to run the Connect Computer Wizard it cannot find the server. I have tried using just a router (D-Link DI-704) and a firewall appliance (Freeguard 100). With the firewall I set the primary DNS to the internal adapter on the SBS. If I explore Complete Network I can logon and view the server. I am also having a problem with a Canon multifunction machine. I can print to it set up a network printer with a static IP address, but I get an error when I try to scan documents and send them to a shared folder on the server. Thank you Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393810
  - 15
    - incoming smtp error 550 5.7.1 hi we have just installed a new server 2003 system from an old 2000 which worked we are not recieving smtp mail we have 2 domains jumbo.co.uk which uses pop3 and jumbo-inflatables.co.uk that uses smtp port 25 ip 195.137.49.186 using a telnet tool from zoneedit.com we can send messages to a test account from jumbo.co.uk but we get the error message 550 5.7.1 returned to the sender when we use jumbo-inflatables.co.uk thank you in advance for any help you can give timt Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393798
  - 16
    - Migrate from SBS 2003 to SBS 2003 R2 on a new HardWare Hello, Is somebody already do this task ? I find the following article for just changing hardware http://technet2.microsoft.com/WindowsServerSolutions/SBS/en/library/a340742f-042e-48da-b865-5244bee1000f1033.mspx?mfr=true And I also found articles that use ADMT to make a complete migration. So what is the best way to achive my goal ? Can I Upgrade SBS 2003 on the source Server to SBS 2003 SP1, then use the article above for moving to the new HardWare and after install the R2 CD ? Thanks a lot for you answers. Syncerly Yours, David. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393797
  - 17
    - WSUS temlog.ldf getting too large Our templog.ldf file in the MSSQL$WSUS folder is getting to 10GB. It has grown about 6GB in the last week. I have tried reading up on shrinking the file with DBCC SHRINKFILE, but I haven't gotten that to work. I backed up the templog file last week, then tried the SHRINKFILE this week and it wasn't recognized as a command. In another forum someone said I needed to change from Full to Simple Recovery and I think I have done that from the Command Line. I have moved all of the downloaded updates to another drive and now the clients can't find them. I thought I did it as I was supposed to. But that's a secondary problem until I get the templog reduced. We have less than 2GB of free space on that drive. Would really appreciate some help. Thanks. Jim Allen Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393784
  - 18
    - MOC w/ SBS 03 I'm interested w/ setting up MOC however from my research it seems that is not available for SBS 03...or is it? Can MOC run of SBS? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393782
  - 19
    - read receipt for Outlook generic user...user has exceptions i have a generic users account that is not a person but a program. The username only exists for the purpose of emailing out our billing statements. What i want to do is have this username's email (abc@company.com) prompt a read receipt when the recipant recieves the email. Can this be done inside of SBS? or does it have to be done w/in Outlook or outlook web? I would prefer to do this inside SBS if possible. Please help, thank you. Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393778
  - 20
    - SharePoint 3.0: problems with external access Hi all, We have SBS 2003 standard SP2 behind a Sonicwall TZ 180. We installed SharePoint 3.0 side-by-side with SP 2.0, no problem during installation, we followed the MS instructions for SP 3.0 on SBS 2003. Everything works fine internally. We like SP 3.0, which we find a great improvement over SP 2.0. So far so good. The trouble is with external access, which we find incredibly complex to set up and so far does not work. Here is what we did : - Under SP 3.0 Central Administration/Operations/Alternate Access Mappings/Public Zone URLs, we have 1) under Â«default Â» the internal url ; 2) under Â« internet Â» https://ip-address:portnumber, where the port number was the one allocated to the site during the initial set up of the intranet following the MS intructions (ie "25364") and the ip-address is our static external address (also used to access RWW without difficulty, for example). - Under IIS, we found the SP 3.0 web site created during setup, but with no Certificate, which we then added (we used the existing cert also used for RWW), and specified a SSL port different from the TCP one (which is the above 25364, so that the SSL is, for example, 8000). I think that I donâ??t really understand how the SSL port works and what it is for, so I suspect that I am doing something wrong here. - In the Sonicwall, we opened both the 25364 and the 8000 ports After trying different combinations of the above (for example : no specification of the SSL portâ?¦ ?), the SP 3.0 site still does not work externally. What I am doing wrong or missing ? Thanks for your help Charles Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393775
  - 21
    - exchange distribution group question Hi All, Hope everybody had a great weekend! I'm running SBS 2003 R2 w/exchange. Regarding distribution groups: Can you create them using public emaill addresses? In other words, I want to create a DL that contains outside recipients instead of SBS users as members. Any help on this would be really appreciated. -mike Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393746
  - 22
    - Computers Return from the Dead Hi, In my recent Extended Server Usage Report, under the Web Activity by Computer section, I see two computers that are no longer on the domain, (they don't even exist any more!), AND they seem to have 24hr/day web activity. I checked with Manage Computers on the SBS machine (standard version, 2003) and confirmed that these two machines are not on the network. How then does the server usage report still show them, and show them as being active? Thanks, - Pasta Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393733
  - 23
    - Companyweb Missing After SP1 Upgrade I have an account with SBS2003 Premium, ISA installed, but no SQL Server. After their SP1 update, the company web page no longer appears. When you open a web browser, you get an error "Cannot connect to the configuration database" and reference to KB 823287. I followed method 1 from that article. The service MSSQL$SHAREPOINT was not running so I started it. Problem still exists. I followed method 2 and verified that IIS is not running in isolation mode. I tried to follow method 3, and this is where the wheels fell off. Step 1 of the second half of Method 3 say to run the Enterprise Manger for SQL Server. This server doesn't have SQL Server installed, how do I do this? Any suggestions on how to get their companyweb page back? Thanks, Bernie Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393728
  - 24
    - Trojan & ADEBOT - Dell Vista SP1 XPS420 infected by ADEBOT... Trend installed but didn't prevent infection. Not to pick on Trend, however, perhaps to alert everyone to this. Where does this crapware come from? Read on... ================================================================= Have a customer who's computer got infected with the following and it was a little nasty to pry it's claws off the computer; I finally located a fix using Google and that seems to have worked. The only thing is, the customer had Trend Micro Internet Security installed and it was up to date and they tell me they weren't surfing on bad sites. they did receive a disc with some pictures on it. Regardless the A/V should have cleaned any crapware. Makes me wonder where the infection came from. Makes me wonder about the usefulness and EFFECTIVENESS of the three year program that they bought along with their Dell. According to the following chart they should have been protected. Here's what they had. according to Trend. Adware Playteck TROJ_BHO.SK They also had an ADEBOT and here's a link on how to remove. http://www.techspot.com/vb/showthread.php?s=19c44773b433fed817f53bd112deb891&t=104254 ========================================================================== See which product is right for you Trend Micro AntiVirus plus AntiSpyware 2008 (1 PC) Trend Micro Internet Security 2008 (3 PCs) Trend Micro Internet Security Pro (3 PCs) Get essential protection Protect your PC from viruses, spyware, and more Block malicious changes to your applications Block email and image spam Secure your home network Surf the Web safely Stop attacks on your PC from nefarious websites Prevent access to inappropriate websites Validate wireless hotspots and Wi-Fi networks Safely bank, shop, or invest online Protect your information from online theft Prevent keystroke loggers from stealing your data Remotely lock folders and files in case of computer theft Extend your PC lifespan Clean up your PC for faster performance Copyright (c) 1989-2008 Trend Micro Incorporated. All rights reserved begin 666 clip_image001.gif M1TE&.#EA"0`&`*(``````/___\P``.WM[?___P```````````"'Y! $```0` ;+ `````)``8```,-2+HDPLJU%^F\S-D,$P`[ ` end Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393721
  - 25
    - Sending Blank reports Hi, In Windows 2003 SB R2 in the Server Management MMC, when you click on Backup or Monitoring and Reporting, the results panel displays: The page cannot be found The page you are looking for might have been removed, had its name changed, or is temporarily unavailable. -------------------------------------------------------------------------------- Please try the following: Make sure that ......blah blah..... <snip> When I recieve the daily or usage reports in my email, the system says the same thing: The page cannot be found The page you are looking for might have been removed, had its name changed, or is temporarily unavailable. -------------------------------------------------------------------------------- Please try the following: Make sure that .......................................... Any suggestions? Tag: Hackersafe: Blind MS SQL Injection Vulnerability Tag: 393713

Hello,

We are using SBS 2003 Premium and have an account for Hackersafe, which test
every day our server for vulnerabilities. The last few weeks we got a report
that this server is not hackersafe. The report says that it found an Blind MS
SQL Injection Vulnerability. The server is fully patched! Sometimes when we
do an on demand scan at hackersafe, there is no problem, but after a few days
the vulnerability shows again.

The Blind MS SQL Injection vulnerability is found at the following point:

Protocol https Port 443 Read Timeout 20000 Method POST Demo
Path /exchweb/bin/auth/owaauth.dll
Headers
Referer=https%3A%2F%2Fmydomain.xxx%3A443%2Fexchweb%2Fbin%2Fauth%2Fowalogon.asp%3Furl%3D%2522Xx%253CXaXaXXaXaX%253ExX%26reason%3D0
Content-Type=application%2Fx-www-form-urlencoded

Body destination="1 declare @x varchar(99) set
@x=0x77616974666f722064656c61792027303a303a323027 exec(@x)--<XaXaXXaXaX>xX
flags=0
username=0
password=0
SubmitCreds=Log On
trusted=0

Can someone please advise how to solve this ? We are using Outlook Web Access.

Top

Re: Hackersafe: Blind MS SQL Injection Vulnerability by Susan

Susan
Tue May 06 23:50:35 PDT 2008

Robbert Tol wrote:
> Hello,
>
> We are using SBS 2003 Premium and have an account for Hackersafe, which test
> every day our server for vulnerabilities. The last few weeks we got a report
> that this server is not hackersafe. The report says that it found an Blind MS
> SQL Injection Vulnerability. The server is fully patched! Sometimes when we
> do an on demand scan at hackersafe, there is no problem, but after a few days
> the vulnerability shows again.
>
> The Blind MS SQL Injection vulnerability is found at the following point:
>
> Protocol https Port 443 Read Timeout 20000 Method POST Demo
> Path /exchweb/bin/auth/owaauth.dll
> Headers
> Referer=https%3A%2F%2Fmydomain.xxx%3A443%2Fexchweb%2Fbin%2Fauth%2Fowalogon.asp%3Furl%3D%2522Xx%253CXaXaXXaXaX%253ExX%26reason%3D0
> Content-Type=application%2Fx-www-form-urlencoded
>
> Body destination="1 declare @x varchar(99) set
> @x=0x77616974666f722064656c61792027303a303a323027 exec(@x)--<XaXaXXaXaX>xX
> flags=0
> username=0
> password=0
> SubmitCreds=Log On
> trusted=0
>
> Can someone please advise how to solve this ? We are using Outlook Web Access.
>
>
Two things of concern here.

1. Hackersafe has deemed some web sites as safe when they've been owned
already, so I'm not sure that I think they are credible or merely crying
wolf here.

2. I'm wondering if they are a bit overreacting to the recent SQL
injection reports.

Let me ask up the ladder and hang loose for now.

Top