Security Incidents mailing list archives
new pop3 exploit out?
From: "leon" <leon () inyc com>
Date: Fri, 5 Oct 2001 16:03:09 -0400
Hi all, I keep getting scanned on various ports (the usual 80, 23, 5190? I know it is aim but not sure why people are looking for it) upon scanning the systems back I find that they are only running a mail server on 110 (pop3) I am sorry I do not have banners that I have grabbed or anything but I do have ip's for ya ;) 213.245.47.41 216.220.104.180 213.112.62.68 (this one is running a multitude of services at the time of writing) 24.29.125.76 Anyone know anything about this? I don't really care because it is more of an annoyance since I am not running any of the services they are looking for (as always). I just figured I would give the list a heads up since I found it strange. Cheers and have a good weekend all, Leon ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- new pop3 exploit out? leon (Oct 05)
- Re: new pop3 exploit out? Valdis . Kletnieks (Oct 06)
- RE: new pop3 exploit out? leon (Oct 06)
- repeated zone transfer denied Ray (Oct 07)
- Message not available
- Re: repeated zone transfer denied Ray (Oct 07)
- Re: repeated zone transfer denied Dave Dittrich (Oct 09)
- Re: repeated zone transfer denied Dave Dittrich (Oct 09)
- RE: new pop3 exploit out? leon (Oct 06)
- Re: new pop3 exploit out? Valdis . Kletnieks (Oct 06)
- <Possible follow-ups>
- RE: new pop3 exploit out? James Weiler (Oct 08)
- RE: new pop3 exploit out? Miller, Toby (Oct 09)