Vulnerability Development mailing list archives
Re: Another new worm???
From: dknaack () RDTECH COM (David Knaack)
Date: Thu, 22 Jun 2000 18:24:18 -0500
From: Jason Legate <jlegate () sitesmith com>
AFAIK, the TODs are not signed, but after speaking with an ex-aol employee, she has said that they use a private lan, with a backdoor phone number.
Such a setup would probably require a fairly involved effort to compromise. Professional black hat stuff I guess. A more likely senerio would be to attack groups of users by routing their traffic to server that understands AOLP and delivers the TOD after the inital connection, then forces them to disconnect. Subsequent connections would be to the real AOL server. DK
Current thread:
- Re: Fwd: ShowFile CGI Security Vulnerability, (continued)
- Re: Fwd: ShowFile CGI Security Vulnerability Blue Boar (Jun 21)
- Re: Another new worm??? Blue Boar (Jun 21)
- Re: Another new worm??? Crispin Cowan (Jun 22)
- Re: Another new worm??? Harmer, Mike (Jun 21)
- Re: Another new worm??? Frank Town (Jun 21)
- Re: Another new worm??? Justin Lintz (Jun 21)
- Re: Another new worm??? Steve Mosher (Jun 22)
- Re: Another new worm??? Michael S Hines (Jun 23)
- Re: Another new worm??? David Knaack (Jun 22)
- Re: Another new worm??? Jason Legate (Jun 22)
- Re: Another new worm??? David Knaack (Jun 22)
- Re: Another new worm??? Jason Legate (Jun 22)
- Red Hat 6.2's ftp segmentation fault Paulo Ribeiro (Jun 22)
- Re: Red Hat 6.2's ftp segmentation fault Osvaldo J. Filho (Jun 23)
- Re: Red Hat 6.2's ftp segmentation fault Michal Zalewski (Jun 23)
- Re: Red Hat 6.2's ftp segmentation fault Jeff Bachtel (Jun 23)
- Re: Red Hat 6.2's ftp segmentation fault Philip Rowlands (Jun 23)
- Re: Red Hat 6.2's ftp segmentation fault Bluefish (Jun 24)
- Re: Red Hat 6.2's ftp segmentation fault Jim Kinney (Jun 24)
- Re: Red Hat 6.2's ftp segmentation fault Blue Boar (Jun 24)
- Different attack vector - PXE-2.0 protocol Ollie Whitehouse (Jun 25)
- Re: Another new worm??? Justin Lintz (Jun 21)