That's the Dabber worm: http://vil.nai.com/vil/content/v_125300.htm
Cheers, Phil ---- Phil Randal Network Engineer Herefordshire Council Hereford, UK > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Roberto Navarro - TusProfesionales.es > Sent: 14 May 2004 13:26 > To: [EMAIL PROTECTED] > Subject: [Full-Disclosure] Worm of the worm? > > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > I have detected some scans lookin' for the 5554 port (sasser's ftpd). > > Does somebody know anything about a new worm, exploiting its > vulnerabilty? > > > Roberto a.k.a. Logan > > > There are no answers, only cross refernces. > -- Weiner's Law of Libraries > > - --------------------------------------- > Roberto Navarro > [EMAIL PROTECTED] > Registered Linux User #212565 > - --------------------------------------- > > -----BEGIN PGP SIGNATURE----- > Version: PGP 8.0.2 > > iQA/AwUBQKS63MhDftHeZF7JEQLl/ACfU2fksblzy3zYh4yelCH2GxATsqcAoM+F > S/UxvCt8U0dgVqP3E+TeunS2 > =sEU4 > -----END PGP SIGNATURE----- > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.netsys.com/full-disclosure-charter.html > _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
