Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Fake "Win98Nuke" programGustavo Molina (gustavomolina.com.br)
Mon, 18 May 1998 17:30:43 GMT
- Messages sorted by: [ date ][ thread ][ subject ][ author ]
- Next message: Theo de Raadt: "Re: pingflood.c"
- Previous message: pedwardWEBCOM.COM: "Re: pingflood.c"
---------- Forwarded message ---------- Date: Tue, 12 May 1998 08:33:59 GMT From: Garry Glendown <garryinsider.regio.net> To: Linux-Announcesenator-bedfellow.mit.edu Subject: Linux-Announce Digest #25 - SECURITY: Fake "Win98Nuke" program =====BEGIN PGP SIGNED MESSAGE==== Following a tool that claimed to show an ftpd-hole in Linux, another program appeared containing (probably) the same code and being as useful as the other one ... The program "WIN98Nuke" claims it is able to kill any Win98-System over the net. This time, no source code is included, only a binary. Looking into the code, you will have no problem spotting strings like "login:", "Password:" or "mail %s <mirror.txt" and "mail %s </etc/passwd". Also, the same subroutine names appear in the file (forgot to strip it :-))) ) as in the ftp-hole-fake, like "emailus" or "loginfake" ... Bye, -gg --- Gustavo Molina - gustavomolina.com.br System Administrator - Newbit - Sao Paulo - Brazil