Code red worm giving false results in NAV CE
From: Brock Campbell (bcampbel@linux.securityfocus.com)Date: 08/08/01
- Previous message: Keith.Morgan: "RE: Port 500??"
- Next in thread: Pete Sherwood: "Re: Code red worm giving false results in NAV CE"
- Reply: Pete Sherwood: "Re: Code red worm giving false results in NAV CE"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Brock Campbell <bcampbel@linux.securityfocus.com> To: security-basics@securityfocus.com Subject: Code red worm giving false results in NAV CE Date: Wed, 8 Aug 2001 14:25:50 -0300 Message-Id: <01Aug8.142736cst.115206@ns.ads.ca>
Just ran into this one.
A coworker just asked me about Code Red and said his machine was infected.
He's running WinME so I checked it out a bit further. Turns out the
'infection' is a file with a .gif extension that contains the html for the
'hacked by chinese' defacement. Is this how Symantec is implementing the
scanning for the bug? Or are they just being over cautious/ marketing hype
driven?
Any Ideas.
- Previous message: Keith.Morgan: "RE: Port 500??"
- Next in thread: Pete Sherwood: "Re: Code red worm giving false results in NAV CE"
- Reply: Pete Sherwood: "Re: Code red worm giving false results in NAV CE"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
