Default config bug leaves 394, 000 computers open proxies

["Adam Behnke" <adam () infosecinstitute com>]

A flaw in the PPLive video streaming software leaves quite a lot of
computers open as proxies for clickfraud, clickjacking and spam. 

 

A new port, TCP port 9415, was appearing regularly on websites that list
open proxies. Most of these open proxies were based in China. However, some
were also based within Taiwan, Hong Kong and there were small a small number
within the United States. Within a year, more than 394,000 instances of open
proxies listed with the TCP port 9415 being open were documented.

 

 

http://resources.infosecinstitute.com/tcp-port-9415/

 

 

 

 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/