Full Disclosure mailing list archives

Re: Worm of the worm?

From: "Exibar" <exibar () thelair com>
Date: Fri, 14 May 2004 11:43:12 -0400

I think you guys are talking about the Dabber worm.

http://vil.nai.com/vil/content/v_125300.htm



Exibar

----- Original Message ----- 
From: "Maxime Ducharme" <mducharme () cybergeneration com>
To: "Roberto Navarro - TusProfesionales.es" <rnavarro () tusprofesionales es>;
<full-disclosure () lists netsys com>
Sent: Friday, May 14, 2004 10:01 AM
Subject: Re: [Full-disclosure] Worm of the worm?



Hi

K-OTik published an exploit for sasser's ftpd :
http://www.k-otik.com/exploits/05102004.sasserftpd.c.php

Maybe you are seeing manual scans or a brand new worm.

Have a nice day

Maxime Ducharme
Programmeur / Spécialiste en sécurité réseau


----- Original Message ----- 
From: "Roberto Navarro - TusProfesionales.es" <rnavarro () tusprofesionales es>
To: <full-disclosure () lists netsys com>
Sent: Friday, May 14, 2004 8:26 AM
Subject: [Full-disclosure] Worm of the worm?


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I have detected some scans lookin' for the 5554 port (sasser's ftpd).

Does somebody know anything about a new worm, exploiting its
vulnerabilty?


                        Roberto a.k.a. Logan


There are no answers, only cross refernces.
        -- Weiner's Law of Libraries

- ---------------------------------------
Roberto Navarro
rnavarro () tusprofesionales es
Registered Linux User #212565
- ---------------------------------------

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0.2

iQA/AwUBQKS63MhDftHeZF7JEQLl/ACfU2fksblzy3zYh4yelCH2GxATsqcAoM+F
S/UxvCt8U0dgVqP3E+TeunS2
=sEU4
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Worm of the worm? Roberto Navarro - TusProfesionales.es (May 14)
- Re: Worm of the worm? Maxime Ducharme (May 14)
  - Re: Worm of the worm? Exibar (May 14)
- Re: Worm of the worm? Frank Knobbe (May 14)
- Re: Worm of the worm? Andrew Simmons (May 14)
- <Possible follow-ups>
- RE: Worm of the worm? Randal, Phil (May 14)
  - Re: Worm of the worm? Valdis . Kletnieks (May 14)
    - Re: Worm of the worm? Bruce Ediger (May 15)
    - Re: Worm of the worm? Valdis . Kletnieks (May 16)