[VulnWatch] VulnWatch Alert - Apache-Koop Worm

From: Steve (steve@entrenchtech.com)
Date: 06/29/02

From: "Steve" <steve@entrenchtech.com>
To: <vulnwatch@vulnwatch.org>
Date: Fri, 28 Jun 2002 17:35:48 -0600

It seems that there is a new worm floating around exploiting the new
Apache chunked encoding issue.


The worm hasn't been officially named but many have referred to it as
the "Koop Worm". It was first seen on a honeypot by Domas Mituzas and
details are available here;


If you haven't already patched you systems now is a good time.


Steve Manzuik
Moderator - Vulnwatch

CSICON - www.csicon.net

Relevant Pages