More agobot/phatbot/polybot variants, cPanel resetpass exploit
More agobot/phatbot/polybot variants
We've received e-mail today of several sites reporting infections of machines that are apparently current on patches and running current anti-virus signatures that have been infected with what appear to be agobot/phatbot/polybot variants. We're still awaiting more detailed forensic examination of the infected machines.
cPanel resetpass exploit
We also received e-mail today from an individual who has captured evidence of attempts to exploit the cPanel resetpass vulnerability described at
http://archives.neohapsis.com/archives/bugtraq/2004-03/0116.html
http://xforce.iss.net/xforce/xfdb/15443
in order to propagate a bot of some sort.
---------------------------------
Jim Clausing
We've received e-mail today of several sites reporting infections of machines that are apparently current on patches and running current anti-virus signatures that have been infected with what appear to be agobot/phatbot/polybot variants. We're still awaiting more detailed forensic examination of the infected machines.
cPanel resetpass exploit
We also received e-mail today from an individual who has captured evidence of attempts to exploit the cPanel resetpass vulnerability described at
http://archives.neohapsis.com/archives/bugtraq/2004-03/0116.html
http://xforce.iss.net/xforce/xfdb/15443
in order to propagate a bot of some sort.
---------------------------------
Jim Clausing
Keywords:
0 comment(s)
My next class:
| Reverse-Engineering Malware: Malware Analysis Tools and Techniques | Coral Gables | Nov 18th - Nov 23rd 2024 |
×
![modal content]()
Diary Archives
Comments