Full Disclosure mailing list archives

Re: update on the linux worm

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Sun, 19 Feb 2006 23:57:04 +0200 (EET)

--cllip--

To my knowledge: mambo, phpgroupware and wordpress.
I submitted a sample to Clamav AV yesterday.

--cllip--

A short note; this mail account misused < characters when replying, Iwas not commenting OSVDB advisory information from Filbert, thefollowing sentence including OSVDB reference is part of my reply:

It is likely that XML-RPC for PHP vulnerabilites are same as beingexploited in last November, the list of affected products is very long:

http://www.osvdb.org/displayvuln.php?osvdb_id=17793

- Juha-Matti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

update on the linux worm Gadi Evron (Feb 18)
- Re: update on the linux worm Micheal Turner (Feb 19)
  - Re: update on the linux worm Filbert (Feb 19)
    - Re: update on the linux worm Boris Filipov (Feb 19)
- Re: update on the linux worm Stephen J. Smoogen (Feb 20)
- <Possible follow-ups>
- Re: update on the linux worm Juha-Matti Laurio (Feb 19)
- Re: update on the linux worm Juha-Matti Laurio (Feb 19)
  - Re: update on the linux worm Byron Copeland (Feb 22)