Full Disclosure mailing list archives
RE: [UPDATE] ping floods
From: "r1an" <r1an () hush ai>
Date: Mon, 18 Aug 2003 12:05:48 -0700
Is that supposed to be WebDAV? If so, can anyone else confirm that the worm has two attack paths - DCOM RPC and WebDAV vulns?
This worn written by VC++6.0 and compressed by UPX. Its size is 10240 bytes. The worm's aim is to remove the msblast anf patch the system,which infects by RPC DCOM and WebDEV.
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- Re: [UPDATE] ping floods, (continued)
- Re: [UPDATE] ping floods Andreas Gietl (Aug 18)
- Re: [UPDATE] ping floods Chris G. Turner (Aug 18)
- Re: [UPDATE] ping floods Andreas Gietl (Aug 18)
- RE: [UPDATE] ping floods Dolinar, Jon (Aug 18)
- RE: [UPDATE] ping floods Abraham, Antony (Cognizant) (Aug 18)
- RE: [UPDATE] ping floods Sam Pointer (Aug 18)
- Re: [UPDATE] ping floods benjurry (Aug 18)
- RE: [UPDATE] ping floods Drew Copley (Aug 18)
- RE: [UPDATE] ping floods B3r3n (Aug 18)
- Why Fixer Worms Are A Bad Idea RE: [UPDATE] ping floods Drew Copley (Aug 18)
- Re: [UPDATE] ping floods benjurry (Aug 18)
- Re: [UPDATE] ping floods B3r3n (Aug 18)
- RE: [UPDATE] ping floods r1an (Aug 18)
- re: [UPDATE] ping floods loper (Aug 18)
- RE: re: [UPDATE] ping floods MacDougall, Shane (Aug 18)