Re: suspicious site

---

• From: "Sebastian G." <seppi@xxxxxxxxx>
• Date: Fri, 25 Jan 2008 01:12:52 +0100

---

David H. Lipman wrote:

D:\temp\jar_cache30809.tmp\JAR_CACHE30809.TMP Exploit-ByteVerify

It is NOT a hijacked site. It is purposefully malicious.
I can not state that all .CZ (Czech Republic) Domains can not be trusted.

But what we can tell for sure is that the owner is horribly stupid. The Byte Verifier vulnerability was, well, Java JDK 1.1? Even the similiar-to-Java-
but-not-actually-Java-VM that Microsoft shipped with Windows 2000 and XP was already at JDK 1.2 level, not vulnerable to this thing.

I still wonder how this thing is still in usage, even though the most stupid bad guy would recognize an infection rate of essentially zero.
.

---

• Follow-Ups:
  • Re: suspicious site
    • From: David H. Lipman

• References:
  • suspicious site
    • From: Rick Merrill
  • Re: suspicious site
    • From: David H. Lipman
  • Re: suspicious site
    • From: Rick Merrill
  • Re: suspicious site
    • From: David H. Lipman

• Prev by Date: Re: suspicious site
• Next by Date: Re: suspicious site
• Previous by thread: Re: suspicious site
• Next by thread: Re: suspicious site
• Index(es):
  • Date
  • Thread

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > alt.computer.security  > 2008-01