[unisog] DDoS IRC bots

Russell Fulton r.fulton at auckland.ac.nz
Thu Mar 6 19:31:58 GMT 2003


On Thu, 2003-03-06 at 19:20, Bill McCarty wrote:

> 
> For those interested in replicating this work, my Windows 2000 honeypot has
> been repeatedly compromised over only several days of operation. Most
> attacks target the Unicode directory traversal vulnerability of (unpatched)
> IIS servers. I've also seen one instance of an IDA buffer overflow. 

Are these standard nimda and codered or something else?


-- 
Russell Fulton, Computer and Network Security Officer
The University of Auckland,  New Zealand

"It aint necessarily so"  - Gershwin



More information about the unisog mailing list