[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] Red WORM What a day?

Subject: RE: [cobalt-users] Red WORM What a day?
From: "Joe Seitzer" <joe@xxxxxxxxxxx>
Date: Thu Aug 2 11:46:12 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> My server also shows 63 attempts. Is there any vulnerability to my RaQ
or
> does this worm only attack Windows based systems.

You are safe with the RaQ, this worm only attacks the Index Server and
Indexing Service ISAPI Extension that come with M$ IIS by creating a
Buffer overflow.  

To read more go to 

http://www.securityfocus.com/bid/2880

or just look at www.securityfocus.com and they have a couple of write
up's.

> People,
> 
> Last time is was missed completely -
> 
> This time I am being pounded - all different IP's
> 
> [admin@www admin]$ cat /var/log/httpd/access | grep default.ida | wc
-l
>      66

I'm up to 103 and still going. 

Joe Seitzer
www.pkicentral.net

References:
- RE: [cobalt-users] Red WORM What a day?
  - From: Manuel Noriega

Prev by Date: RE: [cobalt-users] Why I'll Never do business with Sun Cobalt AGAIN!
Next by Date: RE: [cobalt-users] Clustering Software
Previous by thread: Re: [cobalt-users] Red WORM What a day?
Next by thread: [cobalt-users] Raq3 GUI forward mail doesn't forward cgi sendmail

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index