[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)

Subject: Re: [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)
From: "Kevin D" <kdlists@xxxxxxxxxxxxxxx>
Date: Tue, 7 Aug 2001 10:36:27 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

From: "Michael J. Cannon" <mcannon@xxxxxxxxxxxxxx>
>      a)  if you have Frontpage extensions or the ChiliSoft! extensions
> installed, you are running ISAPI filters and there is discussion in the
vuln
> groups that these will be susceptible to the newer variants and mutations
of
> Code Red.  Remove and disallow ALL FrontPage extensions.

Do you have a source for this? I haven't seen anything about it on Bugtraq
(although it's quite possible I've missed something). Is there an identified
buffer overflow vulnerability in front page extensions for unix?

The two existing Code Red strains and the Code Red II worm cann't
successfully attack linux/unix boxes with front page extensions, just to
reiterate.

Kevin

Follow-Ups:
- RE: [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)
  - From: Simon Wilson

References:
- [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)
  - From: Michael J. Cannon

Prev by Date: Re: [cobalt-security] RE: OT: Mail to Windows Admins (WAS: Hacking Hacking My RAQ4i)
Next by Date: Re: [cobalt-security] RE: OT: Mail to Windows Admins (WAS: Hacking Hacking My RAQ4i)
Previous by thread: RE: [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)
Next by thread: RE: [cobalt-security] Re: Code Red Special Effects (WAS: Hacking my Raq4i???)

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index