23 Aug
2001
23 Aug
'01
1:41 p.m.
--On Thursday, August 23, 2001 12:39:21 -0400 Jim Mercer <jim@reptiles.org> wrote:
my suspicions and some things to look for:
- boxes were comprimised using the buffer overflow in telnetd (speculation)
The CERT/CC is aware of some level of automated exploitation of the recently described telnetd vulnerability. If folks have yet to patch systems for that particular vulnerability, it would be a good thing to spend time doing. We've seen it used to deploy DDoS-capable tools, for example. More info on the vulnerability at: http://www.kb.cert.org/vuls/id/745371 Kevin