Security Incidents: Re: The Return of Code Red II?

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: The Return of Code Red II?

From: Christine Kronberg <Christine_Kronberg () genua de>
Date: Wed, 12 Mar 2003 09:36:02 +0100 (CET)

On Tue, 11 Mar 2003, Stan Burditzman wrote:



Is anyone else seeing traffic generated by Code Red II.  I thought it wasn't
supposed to propagate after 10/01?  Unfortunately I don't have the whole
string but here is the RealSecure Event.


  Never had any of them till yesterday. Coming from:
  217.3.198.126     [11/Mar/2003:17:12:38 +0100]
  217.40.50.241     [11/Mar/2003:21:35:44 +0100]
  217.52.20.194     [12/Mar/2003:06:54:41 +0100]
  202.143.228.194   [12/Mar/2003:08:28:44 +0100]

  Cheers,


                                              Chris.


-- 
GeNUA mbH



----------------------------------------------------------------------------

<Pre>Lose another weekend managing your IDS?
Take back your personal time.
15-day free trial of StillSecure Border Guard.</Pre>
<A href="http://www.securityfocus.com/stillsecure";> http://www.securityfocus.com/stillsecure </A>

By Date By Thread

Current thread:

The Return of Code Red II? Stan Burditzman (Mar 11)
- Re: The Return of Code Red II? Jay D. Dyson (Mar 11)
- SV: The Return of Code Red II? Peter Kruse (Mar 11)
- Re: The Return of Code Red II? Christine Kronberg (Mar 12)
- <Possible follow-ups>
- Re: The Return of Code Red II? David C. Lewis (Mar 11)
- Re: The Return of Code Red II? Kevin Patz (Mar 11)
- Re: The Return of Code Red II? Roger Thompson (Mar 11)