RE: tcp/19150 scans

From: Jacob Hurley (jacobh_at_aos5.com)
Date: 07/09/03

  • Next message: James C. Slora, Jr.: "RE: Missrouted - once more - what happens?"
    Date: Wed, 9 Jul 2003 04:55:00 -0500
    To: "Aaron Cheek" <aaron_cheek@yahoo.com>, <incidents@securityfocus.com>
    
    

    Gkrellmd lives there. It runs on *nix and allows remote connections to
    it, it will display on your gnome desktop your server's statistics
    (uptime, top, network usage, etc). New vulnerabilities have been
    identified in it recently, and exploits have been published:

    http://www.securiteam.com/exploits/5MP0L1FAAC.html

    That's is what they are looking for.

       __
    | / A\__ Jacob Hurley |
    | \__/ O\ Linux+, CCNA |
    | / S\__/ Alexander Open Systems |
    | \__/ 913.307.2366 |
     

    -----Original Message-----
    From: Aaron Cheek [mailto:aaron_cheek@yahoo.com]
    Sent: Monday, July 07, 2003 6:45 PM
    To: incidents@securityfocus.com
    Subject: tcp/19150 scans

    Just curious... Anybody knows what sleeps in that
    port?

    I got hit today and ISC says it is recent stuff:

    http://isc.incidents.org/port_details.html?port=19150

    Aaron

    __________________________________
    Do you Yahoo!?
    SBC Yahoo! DSL - Now only $29.95 per month!
    http://sbc.yahoo.com

    ------------------------------------------------------------------------

    ----
    Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas,
    the 
    world's premier technical IT security event! 10 tracks, 15 training
    sessions, 
    1,800 delegates from 30 nations including all of the top experts, from
    CSO's to 
    "underground" security specialists.  See for yourself what the buzz is
    about!  
    Early-bird registration ends July 3.  This event will sell out.
    www.blackhat.com
    ------------------------------------------------------------------------
    ----
    ----------------------------------------------------------------------------
    Attend the Black Hat Briefings & Training, July 28 - 31 in Las Vegas, the 
    world's premier technical IT security event! 10 tracks, 15 training sessions, 
    1,800 delegates from 30 nations including all of the top experts, from CSO's to 
    "underground" security specialists.  See for yourself what the buzz is about!  
    Early-bird registration ends July 3.  This event will sell out. www.blackhat.com
    ----------------------------------------------------------------------------
    

  • Next message: James C. Slora, Jr.: "RE: Missrouted - once more - what happens?"

    Relevant Pages

    • Re: Foundry ServerIronXL Question
      ... > Early-bird registration ends July 3. ... This event will sell out. ... world's premier technical IT security event! ... 10 tracks, 15 training sessions, ...
      (Focus-IDS)
    • RE: New Probes
      ... the world's premier technical IT security event! ... Early-bird registration ends July 3. ... This event will sell out. ... See for yourself what the buzz is about! ...
      (Incidents)
    • RE: Rather funny; looks like page defacement to me
      ... I think that Gartner Group themselves have become a victim of their own ... world's premier technical IT security event! ... Early-bird registration ends July 3. ... This event will sell out. ...
      (Focus-IDS)
    • Re: Cisco IOS Denial of Service that affects most Cisco IOS routers- requires power cycle to recover
      ... Cisco IOS Denial of Service that affects most Cisco IOS ... > world's premier technical IT security event! ... > Early-bird registration ends July 3. ... This event will sell out. ...
      (Incidents)
    • Re: UDP to port 500
      ... send out ISAKMP packets first to try to negotiate a secure ... >world's premier technical IT security event! ... >Early-bird registration ends July 3. ... This event will sell out. ...
      (Incidents)