SecurityFocus Incidents
By Subject

152 messages sorted by: [ author ] [ date ] [ thread ] [ attachment ]

Starting: 03/01/02
Ending: 03/30/02

A new hack tool - tcp port 3139 ?
- METE.EMINAGAOGLU@DIGITALPLATFORM.com (03/15/02)
- METE.EMINAGAOGLU@DIGITALPLATFORM.com (03/15/02)
Analysis of litmus backdoor trojan
- John C. Hennessy (03/12/02)
Arhas?
- K M (03/01/02)
- Patrick Nolan (03/01/02)
- Starbuck Newton (03/01/02)
- K M (03/01/02)
Attacks on GRC.com
- Vern Paxson (03/01/02)
AW: nouser - rootkit ?
- Rob McCauley (03/12/02)
- vogt@hansenet.com (03/12/02)
Bug#137492: PAM pam_set_item: NULL pam handle passed
- Matt Zimmerman (03/09/02)
Compromised - Port 1524
- blazin w (03/07/02)
- switched (03/06/02)
- Jose Miguel Varet (03/06/02)
- Hines, Eric (03/06/02)
Coordinated HTTP scan (NOT CodeRed or Nimda)?
- Kinsey, Robert (03/05/02)
- Glenn Forbes Fleming Larratt (03/04/02)
different, nimda like, probes
- Russell Fulton (03/22/02)
DoS yesterday
- Dmitri Smirnov (03/26/02)
Email Relay Searches
- Pat Moffitt (03/29/02)
Excess SMTP traffic to non-mail host
- NESTING, DAVID M (SBCSI) (03/27/02)
- Chris Wilkes (03/27/02)
- dr john halewood (03/27/02)
- Basil Hussain (03/27/02)
FTP back in Vogue?
- John Rodley (03/14/02)
- switched (03/13/02)
- Nathan W. Labadie (03/13/02)
- leon (03/13/02)
fun with posiden rootkit
- Dave Dittrich (03/26/02)
- Skip Carter (03/25/02)
- Alvin Oga (03/25/02)
- Olaf Schreck (03/25/02)
FYI - slow scans for https...
- Erik Fichtner (03/04/02)
- Andreas Östling (03/04/02)
- Hugo van der Kooij (03/04/02)
- Russell Fulton (03/03/02)
HTTPS scans
- H C (03/11/02)
- Kurt Seifried (03/11/02)
- Keith T. Morgan (03/11/02)
increase in ftp scanning
- Ryan Hill (03/05/02)
- Benninghoff, John (03/05/02)
- Baribault, Gary (03/05/02)
- Dragos Ruiu (03/05/02)
- admin@dnsppp.net (03/05/02)
- quentyn@fotango.com (03/04/02)
increase in scans for RPC
- Dan Irwin (03/21/02)
- Todd Suiter (03/20/02)
increase in smb scans
- Nathan W. Labadie (03/15/02)
- Hugo van der Kooij (03/08/02)
- Lee Ayres (03/09/02)
- Nathan W. Labadie (03/08/02)
Increase in squid scanning...
- David Jacoby (03/11/02)
- Baribault, Gary (03/05/02)
- switched (03/05/02)
Large Attack
- Walter G. Aiello (03/04/02)
- Douglas P. Brown (03/02/02)
- zaire (03/02/02)
- Passion (03/02/02)
- Coochey, Giles (03/02/02)
- Douglas P. Brown (03/01/02)
Logon Banners
- Rohrer, Mark E (03/23/02)
- Chris Wilson (03/23/02)
- Hugo van der Kooij (03/23/02)
- Led Slinger (03/23/02)
- Chris Ricker (03/23/02)
Major DNS cache poisoning at Verisign/WorldNIC
- Brian McWilliams (03/20/02)
- Matthew F. Caldwell (03/19/02)
ncacn_http/1.0
- cw (03/07/02)
- McCammon, Keith (03/07/02)
- theGooo@hotmail.com (03/07/02)
network mystery
- network-questions@excite.com (03/27/02)
New Nimda?
- Steve (03/08/02)
- Bradley, Tony (03/07/02)
nouser - rootkit ?
- Bill_Royds@pch.gc.ca (03/12/02)
- Eric Brandwine (03/12/02)
- Jose Nazario (03/12/02)
- Kyle R Maxwell (03/12/02)
- Brian Hatch (03/12/02)
- Eric Brandwine (03/12/02)
- Dave Dittrich (03/12/02)
- Bruce Ediger (03/12/02)
- Konrad Rieck (03/11/02)
- Ryan Russell (03/11/02)
- Eric Brandwine (03/11/02)
- Dan Uscatu (02/11/02)
nouser - rootkit ? [:multiple root kit thread:]
- Dan Rohan (03/12/02)
ORBZ shut down
- Brad Arlt (03/21/02)
- jlewis@lewis.org (03/20/02)
- David Ulevitch (03/20/02)
Port UDP 3049
- Thomas Akin (03/14/02)
- Ryan Russell (03/11/02)
- Paulo.Sedrez@weavers.com.br (03/11/02)
- Ryan Russell (03/10/02)
Probes to strange ports
- H C (03/07/02)
- Kinsey, Robert (03/07/02)
- Kenneth Wilson (03/07/02)
Question
- Valdis.Kletnieks@vt.edu (02/28/02)
Question about HTTP DDOS attacks.
- Kyle R. Hofmann (03/18/02)
- Hugo van der Kooij (03/18/02)
- eax@3xT.org (03/16/02)
Rcon trojan
- H C (03/05/02)
- H C (03/05/02)
- Tom Gerritsen (03/04/02)
- Hugo van der Kooij (03/04/02)
- Owen Creger (03/04/02)
RemoteNC backdoors, attacks via ports 1433, 524, 139, 445, 21, destroyed files
- James McGee (03/14/02)
- switched (03/13/02)
- bukys@rochester.edu (03/13/02)
Rise in spoofing and smurfing?
- Stuart Sheldon (03/01/02)
- Glenn Forbes Fleming Larratt (03/01/02)
RTCW?
- vogt@hansenet.com (03/11/02)
- Mark Spencer (03/10/02)
Sendmail DOS ?
- Hugo van der Kooij (03/27/02)
- Steve Halligan (03/27/02)
- Micheal Patterson (03/27/02)
- Ken Lyon (03/27/02)
- Fragga (03/27/02)
Sloppy compromise
- switched (03/13/02)
SMTP Probe/Attack?
- Patrick Andry (03/11/02)
Solaris hack
- Christopher Samuel (03/04/02)
ssh exploit
- Lee Evans (03/15/02)
- Lee Evans (03/14/02)
sshd: PAM pam_set_item: NULL pam handle passed
- Matt Zimmerman (03/09/02)
- Chris Faulhaber (03/09/02)
- Tina Bird (03/09/02)
- Matt Zimmerman (03/09/02)
- Matt Zimmerman (03/08/02)
strange UDP 5400 traffic
- Maarten (03/29/02)
Stray UDP activity?
- Jim Watt (03/08/02)
- sheib (03/08/02)
Sub7 (SubSeven), Win2k, and IE 5.5
- H C (03/20/02)
- Kirk Schafer (03/20/02)
Suspect short first fragment?
- Boyan Krosnov (03/01/02)
Update: UDP 770 Potential Worm
- H C (03/04/02)
- Byrne Ghavalas (03/02/02)
- H C (03/02/02)
- H C (03/02/02)
- Byrne Ghavalas (03/02/02)
very interesting 0day tool... http honeypot in action
- Michal Zalewski (03/13/02)
- zeno (03/12/02)
- Michal Zalewski (03/12/02)
watching them -after the fact
- zeno (03/26/02)
- Alvin Oga (03/25/02)
We have lots of users with SonicWalls for VPN connectivity in to FW-1, possible major security hole
- Mark J. DeFilippis (03/08/02)
Weird log entries...
- John Hartley (03/28/02)
- Michael Ward (03/28/02)
- Cushing, David (03/28/02)
- Florian Weimer (03/28/02)
- Kelly Martin (03/28/02)
- zeno (03/28/02)
- Josh Diakun (03/28/02)
{MERIT-INP} 7.0.1.0 -> 14.0.2.13
- seren geti (03/22/02)

Last message date: 03/30/02
Archived on: 03/30/02 CET

152 messages sorted by: [ author ] [ date ] [ thread ] [ attachment ]

SecurityFocus IncidentsBy Subject

SecurityFocus Incidents
By Subject