[connect24h:01769] Re: $B?/F~<j8}(B$B$K$D$$$F(B

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[connect24h:01769] Re: $B?/F~

To: connect24h@xxxxxxxxxxxxx
Subject: [connect24h:01769] Re: $B?/F~
From: DANNA <danna@xxxxxxxxxxx>
Date: Tue, 27 Feb 2001 14:20:59 +0900

$B%@%s%J!w%5%]%;%s$G$9!#(B
(B
$B1~5^E*$J$b$N$G$9$,!":#2s$N(B bind exploit $B$r(B snort $B>e$G8!=P$G$-$k(B
$B$h$&$K%7%0%M%A%c$r=q$$$F$_$^$7$?!#(B
(B
$BK\Ev$K1~5^E*$J$b$N$J$N$G7W$J%b%N$b8!CN$9$k$+$J!)(B
(B
(Balert udp any any -> any 53 (msg:"ALERT!! BIND-EXPLOIT ATTEMPT "; content:"|abcd 0980 0000 0001 0000|";)
(B
(Balert udp any any -> any 53 (msg:"ALERT!! SHELL START ON BIND!! "; content:"/bin/sh";)
(B
(B
(B+---------------------------------------+
(B+    DANNA @ SAPOSEN
(B+  e-mail : danna@xxxxxxxxxxx
(B+  web site : http://www.hawkeye.ac/micky
(B+---------------------------------------+

Follow-Ups:
- [connect24h:01771] Re: $B?/F~
  - From: DANNA

References:

[connect24h:01764] $B?/F~
From: syun

Prev by Date: [connect24h:01768] Re: HUC $B4XO">u(B$B67$HBP1~;d0F(B (Ve r.2270800)
Next by Date: [connect24h:01770] Re: $B%Q%9%o!<(B$B%I8x3+(B
Previous by thread: [connect24h:01764] $B?/F~

Next by thread: [connect24h:01771] Re: $B?/F~

Index(es):
- Date
- Thread