Network Security: Detailed info on [Full-Disclosure] agobot and 1025

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

Subject:	[Full-Disclosure] agobot and 1025
Date:	Thu, 29 Apr 2004 08:57:23 -0500

Subject:

[Full-Disclosure] agobot and 1025

Date:

Thu, 29 Apr 2004 08:57:23 -0500

hi all, in range of latest agobot's scans is port 1025. i know that by default there sits mstask and over rpc you can talk to him, add scheduled jobs etc (done this). sniffer captures reveals, that port 1025 attempts significantly resembles 135 DCOM/blaster attempts. can anyone point out what and how _specifically_ are exploited in port 1025? W. -- ___________________________________________________________ Sign-up for Ads Free at Mail.com http://promo.mail.com/adsfreejump.htm

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] agobot and 1025, Willem Koenings <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	RE: [Full-Disclosure] Heads up: Possible lsass worm in the wild, Randal, Phil
Next by Date:	Re: [Full-Disclosure] Phenoelit Advisory <wir-haben-auch-mal-was-gefunden #0815 ++++>, Michael Guenther
Previous by Thread:	[Full-Disclosure] Zonet ZSR1104WE Router problem, J Wachtel
Next by Thread:	[Full-Disclosure] Paper Release, IHC team
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

RE: [Full-Disclosure] Heads up: Possible lsass worm in the wild, Randal, Phil

Next by Date:

Re: [Full-Disclosure] Phenoelit Advisory <wir-haben-auch-mal-was-gefunden #0815 ++++>, Michael Guenther

Previous by Thread:

[Full-Disclosure] Zonet ZSR1104WE Router problem, J Wachtel

Next by Thread:

[Full-Disclosure] Paper Release, IHC team

Indexes:

[Date] [Thread] [Top] [All Lists]