Thinking...
[get complete service list]
Top of page
Port Information
Protocol Service Name
tcp radmin Remote Administrator default port
tcp radmin-port RAdmin Port
udp radmin-port RAdmin Port
Top IPs Scanning
Today Yesterday
148.113.214.99 (22)221.198.96.134 (35)
221.198.96.134 (18)51.68.54.55 (31)
117.88.141.227 (13)178.22.24.121 (16)
115.231.78.14 (7)115.231.78.14 (16)
134.209.95.237 (7)185.156.73.103 (15)
183.50.2.71 (6)45.141.85.137 (13)
191.189.30.79 (6)93.123.109.61 (13)
74.82.47.19 (6)66.222.133.234 (12)
82.115.47.90 (6)115.231.78.10 (11)
65.49.20.96 (5)64.62.197.102 (11)
Port diary mentions
URL
Law, spam, and 4899tcp
A day in the life of a firewall log
TCP scanning increase for 4899
Top of page
User Comments
Submitted By Date
Comment
Timo Steffens 2009-10-04 18:34:16
On the following forum there is a post (#13) describing how to determine whether a packet was really intended for radmin (static identification data) : http://www.governmentsecurity.org/forum/index.php?showtopic=7866
2004-10-28 05:52:28
http://www.pestpatrol.com/PestInfo/r/remote_administrator__rat_.asp
Ronaldo Vasconcellos 2004-08-23 22:42:38
More info on 4899 TCP on: [VulnWatch] SECNAP Security Alert: Radmin Default install options vulnerability http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0099.html As stated just above, there�s a known vulnerability related to this service (radmin). The intent of this post is just to provide you with more info about this vuln.
Paulo Sedrez 2004-07-23 04:58:32
There is a known remote exploitable vulnerability in radmin server versions 2.0 and 2.1 that allows code execution.
Top of page
CVE Links
CVE # Description
Top of page