Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Port 38566, Update to Firefox weakness, Packetfoo site launched! SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Port 38566, Update to Firefox weakness, Packetfoo site launched!
 Lots of scanning on port 38566

Shows a very large number of records and sources, and a small set of targets.  

Its is currently #1 in the Dshield Ports list:

Update to Firefox vulnerability posted  earlier

This particular vulnerability could be exploited by a malicious web site, enabling the remote site to open and view content of local files.  This is enabled by the site tricking the user into right-clicking (alt-clicking) and choosing the "view image" on a broken image link.  The malicious site links to a file on your machine, which then exposes the file.

Packetfoo launched

Many of us have been wanting packet capture file archives for a while.  Richard Beijtlich started a project called and I startedPacketfoo.  I have talked to Richard briefly about collaborating, and Im sure we will further that as the projects grow.  Ill be setting up the charter, and putting up files as the days go by.  Any support would be  appreciated.

domo arigato gozaimas,

Mike Poor
Handler on Duty

49 Posts
May 7th 2006

Sign Up for Free or Log In to start participating in the conversation!