Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Horde exploit downloading Perl/Shellbot SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Horde exploit downloading Perl/Shellbot
As already mentioned in Friday's diary, exploits for the Horde App Framework vulnerability are making the rounds. The exploit downloads and installs two variants of Perl/Shellbot which connect back to IRC servers in Germany and the U.S. over tcp/4444. A Nessus Plugin is available to check for the Horde vulnerability.

Daniel

367 Posts
ISC Handler

Sign Up for Free or Log In to start participating in the conversation!