Re: BIND 8.2.2.-P3, 0-day exploit

[rizzdogg () NOC THEWORKS COM (Brian McKinney)]

ryan wrote:
> Anyone have one of these scanners that's being used in the wild?  Do
> just they do banner scanning, as suggested below, or do they just try the
> exploit regardless?  Judging by how many folks here are repoting
> successful owning by the ADMrocks exploit, I would assume that it works
> particularly well, even for the most clueless kiddies.

Heres a bind scanner that i found a while ago. it scans by /16 and /24. and
yes its very easy to use even for the most clueless kiddies.

Brian

here is the source and the binary compiled on freebsd.

<HR NOSHADE>
<UL>
<LI>application/octet-stream attachment: bs1
</UL>

<HR NOSHADE>
<UL>
<LI>application/octet-stream attachment: bs.c
</UL>