Security Incidents mailing list archives

Re: Dameware Malcode? Is anyone aware of it?

From: "Nick Jacobsen" <nick () ethicsdesign com>
Date: Thu, 5 Jun 2003 11:15:11 -0700

More then aware of it...  one of my clients (who became a client because of
this actually), had there MS FTP box rooted, and that was installed on
there.  If you have found the dameware, also look for mirc, and a FTP
server.  The server you found it on was probably joined to a bot net.

Nick
----- Original Message ----- 
From: "John" <johnccosta () yahoo ca>
To: <incidents () securityfocus com>
Sent: Wednesday, June 04, 2003 11:31 AM
Subject: Dameware Malcode? Is anyone aware of it?

Is anyone aware of the existence of Dameware malcode that makes use of
Damaware mini-remote control to provide an attacker with backdoor access
to systems?
Thanks
John

----------------------------------------------------------------------------
----------------------------------------------------------------------------

----------------------------------------------------------------------------
----------------------------------------------------------------------------

Current thread:

Dameware Malcode? Is anyone aware of it? John (Jun 05)
- Re: Dameware Malcode? Is anyone aware of it? morning_wood (Jun 06)
- Re: Dameware Malcode? Is anyone aware of it? John Ives (Jun 06)
- Re: Dameware Malcode? Is anyone aware of it? Nick Jacobsen (Jun 06)
- <Possible follow-ups>
- RE: Dameware Malcode? Is anyone aware of it? Flory D Jeffrey Contractor 59MDSS/MSISI (Jun 06)
- RE: Dameware Malcode? Is anyone aware of it? John Costa (Jun 06)
- RE: Dameware Malcode? Is anyone aware of it? John Costa (Jun 09)