Signature Detail

Short Name	TELNET:FAILURE:NON-NTLM
Severity	Info
Recommended	No
Category	TELNET
Keywords	telnet dangerous command bin
Release Date	2003/04/22
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

TELNET: Failure Windows Non-NTLM

This signature detects a TELNET login failure due to a non-NTLM-encrypted user name and/or password on the Windows TELNET server. If TELNET is configured to enable NTLM authentication only, attackers attempting to log in using non-NTLM-encrypted user names and passwords receive the error message "server allows NTLM authentication."

Extended Description

None

References

URL: http://support.microsoft.com/default.aspx?scid=kb;EN-US;q201194

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

TELNET: Failure Windows Non-NTLM

Extended Description

References