Security Incidents mailing list archives
Re: BIND 8.2.2.-P3, 0-day exploit
From: rizzdogg () NOC THEWORKS COM (Brian McKinney)
Date: Thu, 27 Apr 2000 12:41:32 -0700
ryan wrote:
Anyone have one of these scanners that's being used in the wild? Do just they do banner scanning, as suggested below, or do they just try the exploit regardless? Judging by how many folks here are repoting successful owning by the ADMrocks exploit, I would assume that it works particularly well, even for the most clueless kiddies.
Heres a bind scanner that i found a while ago. it scans by /16 and /24. and yes its very easy to use even for the most clueless kiddies. Brian here is the source and the binary compiled on freebsd. <HR NOSHADE> <UL> <LI>application/octet-stream attachment: bs1 </UL> <HR NOSHADE> <UL> <LI>application/octet-stream attachment: bs.c </UL>
Current thread:
- Re: BIND 8.2.2.-P3, 0-day exploit Brian McKinney (Apr 27)