[NBLUG/talk] openssh exploit?
Scott Doty
scott at sonic.net
Tue Sep 16 11:32:00 PDT 2003
On Tue, Sep 16, 2003 at 10:41:33AM -0700, Mitch Patenaude wrote:
> According to the buzz (Slashdot and the full disclosure list), there is
> an active exploit in the wild -- a worm. Several ISPs have starting
> blocking port 22 both because of root exploits on their servers, and
> because the worm actively makes MANY connection requests looking for
> the right offset, creating a DOS.
Question: how can one determine if a system has the worm?
-Scott
More information about the talk
mailing list