TO UNSUBSCRIBE: email "unsubscribe issforum" in the body of your message to
[EMAIL PROTECTED] Contact [EMAIL PROTECTED] for help with any problems!
----------------------------------------------------------------------------
Will everyone please drop me from this thread. I
posted the original email to pass along information to
everyone on the board, some of whom may not track
Buqtraq or other mailing lists. Yes, SubSeven has
been around for a while, but version 2.2 seems to
offer more ways of avoiding tools like RealSecure.
Threads like this where the only point of the emails
is to slam ISS, the X-Force or other posters are
counterproductive.
--- "Fitch, Brian (ISSAtlanta)" <[EMAIL PROTECTED]>
wrote:
> jeez...
>
> subseven is an old backdoor, but the latest version
> is 2.2 people!
>
> Brian, IDS and stuff
>
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, March 13, 2001 6:27 PM
> To: [EMAIL PROTECTED]; [EMAIL PROTECTED];
> [EMAIL PROTECTED]; Lindley, Jim (ISSAtlanta)
> Cc: [EMAIL PROTECTED]
> Subject: RE: Subseven 2.2 Release
>
>
> If you have known about SubSeven 2.2 since June of
> 2000, then why did your
> X-Force boys feel compelled to release a brand new
> alert about it? I would
> have mentioned that fact in the alert........
>
> http://xforce.iss.net/alerts/advise73.php
>
> Snort rules......
>
>
> -----Original Message-----
> From: Lindley, Jim (ISSAtlanta)
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, March 13, 2001 3:01 PM
> To: 'Steve'; Sid Witzer; Mike Peterson
> Cc: [EMAIL PROTECTED]
> Subject: RE: Subseven 2.2 Release
>
>
>
> TO UNSUBSCRIBE: email "unsubscribe issforum" in the
> body of your message
> to
> [EMAIL PROTECTED] Contact [EMAIL PROTECTED]
> for help with any
> problems!
>
------------------------------------------------------------------------
> ----
>
> What new vulnerability? SubSeven 2.2 detection has
> been in RealSecure since
> June 2000.
>
>
> James R Lindley
> Global Operations Training Manager
> Managed Security Services
> Internet Security Systems Inc.
> 6303 Barfield Road
> Atlanta GA 30328
> 404-236-3009
> An unquenchable thirst for Pierian waters
>
>
>
> -----Original Message-----
> From: Steve [mailto:[EMAIL PROTECTED]]
> Sent: Monday, March 12, 2001 11:13 PM
> To: Sid Witzer; Mike Peterson
> Cc: [EMAIL PROTECTED]
> Subject: RE: Subseven 2.2 Release
>
>
>
> TO UNSUBSCRIBE: email "unsubscribe issforum" in the
> body of your message
> to
> [EMAIL PROTECTED] Contact [EMAIL PROTECTED]
> for help with any
> problems!
>
------------------------------------------------------------------------
> ----
>
> SubSeven is a program that is very similar to Back
> Orffice or Netbus.
>
> As far as its relationship to ISS, there isn't one
> except for the fact that
> X-Force specializes in releasing alerts on the
> obvious and seems to have
> an
> issue finding new vulnerabilities to report. Its
> really too bad, as they
> used to be a respected research organization.
>
>
>
> > -----Original Message-----
> > From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]]On Behalf
> Of
> > Sid Witzer
> > Sent: Monday, March 12, 2001 5:55 PM
> > To: Mike Peterson
> > Cc: [EMAIL PROTECTED]
> > Subject: Re: Subseven 2.2 Release
> >
> >
> >
> > What is Subseven 2.2 ? and what is your
> relationship to ISS?
> >
> >
> > Mike Peterson wrote:
> >
> > > TO UNSUBSCRIBE: email "unsubscribe issforum" in
> the body of
> > your message to
> > > [EMAIL PROTECTED] Contact
> [EMAIL PROTECTED] for help with
> > any problems!
> > >
> >
>
------------------------------------------------------------------
> > ----------
> > >
> > > FYI - SubSeven 2.2 has been released.
> > >
> > >
> http://www.tlsecurity.net/backdoor/Subseven.2.2.html
> > >
> > >
> __________________________________________________
> > > Do You Yahoo!?
> > > Yahoo! Auctions - Buy the things you want at
> great prices.
> > > http://auctions.yahoo.com/
> >
> > --
> > Regards,
> > Sid Witzer
> > Citigroup/CGTI/GSO/DCRM/High Availability Systems
> >
> > Voice: 201-601-7452
> > Pager: 800-Page-mci
> > pin: 1670629
> > Cell: 917-679-3896
> > Fax: 201-601-5680
> >
> >
>
>
>
>
> Free, encrypted, secure Web-based email at
www.hushmail.com
__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.
http://personal.mail.yahoo.com/
