Snort mailing list archives
RE: Code Green???
From: John Steniger <stenigej () FamilyMeds com>
Date: Tue, 18 Sep 2001 13:06:21 -0400
This isn't a code red exploit, it appears to be a IIS-Unicode exploit. Our servers are patched for Code-Red as well as IIS Unicode and other then some degraded performance, we aren't seeing any infections. John J. Steniger
-----Original Message----- From: Steve Halligan [mailto:agent33 () geeksquad com] Sent: Tuesday, September 18, 2001 12:35 PM To: 'richard'; snort-users () lists sourceforge net Subject: RE: [Snort-users] Code Green???This infected our previously patched for code red, winnt and win2k systems.. One of them i even fixed yesterday and put Microsofts CodeRedCleanup tool on it. It is placing the root.exe fileon the harddrive.Can anyone verify that this is infecting IIS server patched to current levels? _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- RE: Code Green???, (continued)
- RE: Code Green??? Jim Howard (Sep 18)
- RE: Code Green??? Erek Adams (Sep 18)
- RE: Code Green??? Jim Howard (Sep 18)
- RE: Code Green??? Steve Halligan (Sep 18)
- RE: Code Green??? Lodin, Steven {GZ-Q~Mannheim} (Sep 18)
- RE: Code Green??? richard (Sep 18)
- RE: Code Green??? Steve Halligan (Sep 18)
- RE: Code Green??? Ed Kasky (Sep 18)
- RE: Code Green??? Steve Halligan (Sep 18)
- Re: Code Green??? Ian Cudlip (Sep 18)
- RE: Code Green??? John Steniger (Sep 18)
- RE: Code Green??? Tim Parker (Sep 18)
- Re: Code Green??? Ian Cudlip (Sep 18)
- RE: Code Green??? Missaghi, Shawn (Sep 18)
- RE: Code Green??? Dominick, David (Sep 18)
- RE: Code Green??? Patrick Coomans (Sep 18)
- RE: Code Green??? Jim Howard (Sep 18)