Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Front Page Hack Update, Veritas Advisories SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Front Page Hack Update, Veritas Advisories

Front Page Hack


First off, thanks to all who sent in log snippets, pcaps or an analysis of the Front Page hack that Joshua reported in yesterday's diary.


To sum up what we've seen, the attack seems to have been first observed back in March and may be generated by a poorly written worm


One reader reported this to be a precursor to the download of lsd.exe which is detected by Symantec as although the behavior that has been reported doesn't seem to match Symantec's description.


Veritas Advisories













Chris

140 Posts
Jun 22nd 2005

Sign Up for Free or Log In to start participating in the conversation!