Infidels deface Iranian presidential site

[InfoSec News <isn () C4I ORG>]

http://www.theregister.co.uk/content/6/16148.html

By: John Leyden
Posted: 17/01/2001 at 12:28 GMT

A team of script kiddies have invited a possible fatwah by defacing
the Web site of the President of the Islamic Republic of Iran.

The site, which normally carries pieces on President Khatami latest
weighty pronouncements, was replaced with a smiley face and taunts by
the hackers, mOsad and R.S. (infernoZ), that "your security is
SUXXX!!!. The defacement has been mirrored by Attrition and is
available here,

http://www.attrition.org/mirror/attrition/2001/01/16/web.president.gov.ir/

Chris McNab, network security analyst at MIS Corporate Defence, said
the attack was the work of "opportunists" who likely exploited a
simple flaw in the site's Internet Information Server 4 web server.

"This attack was mounted by people who probably only know a handful of
techniques. They probably scanned all the systems in gov.ir and then
ran an exploit script, which is available on sites like Packetstorm,"
said McNab.

ISN is hosted by SecurityFocus.com
---
To unsubscribe email LISTSERV () SecurityFocus com with a message body of
"SIGNOFF ISN".