As far as I know is a listening port used to upload new executables into the infecter workstation/server.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Tuesday, February 17, 2004 11:27 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: [EMAIL PROTECTED] spreading at a steady pace. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 It seems that Beagle variant B is spreading on the internet folks. It hit our company mailservers today. It seems like its creating port 8866. Does anyone know if there is a known exploit code using that specific port? Any additional details, anyone that might have regarding this warm besides whats on the Antivirus websites would be very informative. Thanks Martin M Systems Security Analyst -----BEGIN PGP SIGNATURE----- Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 2.3 wkYEARECAAYFAkAybCgACgkQHxPzbxnt5HSW1QCeNZ26uE/fNEB0UBfZOt2AFWjeMZMA oJPah43VAR9kv6sq7vEKRDGQwblv =PgWq -----END PGP SIGNATURE----- Concerned about your privacy? Follow this link to get FREE encrypted email: https://www.hushmail.com/?l=2 Free, ultra-private instant messaging with Hush Messenger https://www.hushmail.com/services.php?subloc=messenger&l=434 Promote security and make money with the Hushmail Affiliate Program: https://www.hushmail.com/about.php?subloc=affiliate&l=427 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
