|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: pimpshiz / put i.txt
From: Cashdollar, Larry (larry.cashdollar
AKAMAI.COM)Date: Mon Oct 09 2000 - 12:18:42 CDT
- Next message: Aleph One: "ISS Security Alert: Widespread incidents of SubSeven DEFCON8 2.1 Backdoor"
- Previous message: Ryan Russell: "Re: Smurf attack?"
- Maybe in reply to: Rewt, Kit: "pimpshiz / put i.txt"
- Next in thread: Abe Getchell: "Re: pimpshiz / put i.txt"
- Maybe reply: Cashdollar, Larry: "Re: pimpshiz / put i.txt"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
>I have spoken to pimpshiz, and he DOES NOT use the RDS' sploit. He does
use
>a 0day, but I am unsure of it's nature. He has defaced all IIS/NT servers,
>so that at least narrows it down. More logs would be nice though.
If pimpshiz has a 0 day exploit for IIS/NT 4.0 Why is he defacing these no
name sites?
If we look at attrition I see the sites he has defaced are low profile. If
I take a look at netcraft I see that IIS/NT 4.0 is also being used by nasdaq
and the NFL. It is my guess that he has a customized RDS' script which he
probably tweaked a little and calls it 0 day.
- Next message: Aleph One: "ISS Security Alert: Widespread incidents of SubSeven DEFCON8 2.1 Backdoor"
- Previous message: Ryan Russell: "Re: Smurf attack?"
- Maybe in reply to: Rewt, Kit: "pimpshiz / put i.txt"
- Next in thread: Abe Getchell: "Re: pimpshiz / put i.txt"
- Maybe reply: Cashdollar, Larry: "Re: pimpshiz / put i.txt"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]