Re: Multiple Vendor Telnetd Buffer Overflow Vulnerability Worm

From: Kenneth L. Grossman (kgrossmanat_private)
Date: Thu Sep 06 2001 - 04:26:34 PDT

Next message: Hire, Ejay: "RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.)"

Previous message: Dom De Vitto: "RE: Telnetd exploit for solaris"
In reply to: Alfred Huger: "Multiple Vendor Telnetd Buffer Overflow Vulnerability Worm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Is this the "x.c" worm that is discussed in the NIPC Assessment 01-019, or
is it a new one?

Ken

At 03:35 PM 09/05/2001 -0600, Alfred Huger wrote:
>
>Heya all,
>
>There is apparently a worm in circulation which exploits the Multiple
>Vendor Telnetd Buffer Overflow Vulnerability BID 3064:
>
>http://www.securityfocus.com/bid/3064
>
>The ARIS Analyst Team are actively looking for a copy of this worm, "x.c"
>should you have a copy of it and be willing to shoot it this way we would
>deeply appreciate it. Any research we perform will posted directly back to
>the list(s) for public consumption.
>
>VP Engineering
>SecurityFocus
>"Vae Victis"
>
>
>

Ken Grossman
kgrossmanat_private
(202) 323-3205

Next message: Hire, Ejay: "RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.)"
Previous message: Dom De Vitto: "RE: Telnetd exploit for solaris"
In reply to: Alfred Huger: "Multiple Vendor Telnetd Buffer Overflow Vulnerability Worm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Sep 06 2001 - 08:57:06 PDT