WinPopUp Vulnerability Test

Discussion in 'other security issues & news' started by Paul Wilders, Dec 6, 2002.

Thread Status:
Not open for further replies.
  1. Paul Wilders

    Paul Wilders Administrator

    Jul 1, 2001
    The Netherlands
    Lawrence Baldwin offers the following (Beta) service:

    "I wanted to give users the ability to quickly test to see if their systems are vulnerable to WinPopUPs.

    Here's a one-click test that will attempt to send an RPC-based popup to the IP address that accesses the web page:

    WinPopUP Tester

    The above test assumes you access the Internet via a *public* IP address...if you are behind a proxy/cache server it may not detect your IP address correctly.

    I actually do have some logic to detect proxies...would appreciate feedback from proxy users on their experiences with it.

    I assume anyone here is already blocking WinPopups by using a firewall...if you want to test my script then you may need to temporarily allow access to udp/135...or add myNetWatchman's IP to your trusted zone ('').

    Enjoy and please share with friends/family .. e.g. the people that actually need to test for this.

    I also updated the 'Prevention' tech notes on this..any feedback on this appreciated as well.

    Many thanks to Psloss...he wrote the ActiveX control (server SIDE!!) to accomplish this.

    I'm more than happy to provide the hosting of this tester if it'll help encourage more users to secure their boxes.

    Lawrence Baldwin"

    why not give it a try? ;)


Thread Status:
Not open for further replies.