[unisog] Blaster DDOS potential

Marty Hoag Marty.Hoag at ndsu.nodak.edu
Thu Aug 14 17:04:56 GMT 2003

Tracey Losco wrote:
> Hey there,
> Does anyone have the actual code where we can see the call for the 
> DDoS?  I haven't been able to get my hands on a copy of the program so 
> that I could run strings against it...
> Thanks in advance,

    I saw the strings output someplace...  Isn't the
exploint on port 80 on the 16th and after (against
windowsupdate.com)?  Others may have more technical
sources but InternetStormCenter has had links to

(that has link to more detailed earlier analysis)


and someone on the EDUCAUSE Security list pointed to

with a link to their analysis (at Version 9 right now) at


More information about the unisog mailing list