[wplug] Linux worm
Robert Dale
rdale at wplug.org
Sat Sep 14 18:37:32 EDT 2002
On Sat, 14 Sep 2002, Hagbard Celine wrote:
> > http://securityresponse.symantec.com/avcenter/venc/data/linux.slapper.worm.html
> >
> Does this infect via an e-mail attachment, or through a script run by Apache?
> It appears to me that it is through e-mail, but I just wanted to make sure...
As it states in the "technical details" section, the worm propagates itself
by connecting to the https port, then uploading source source code, compiling
it, and finally the executing binary to find even more vulnerable systems.
There is no mention of email in that response.
--
Robert Dale
More information about the wplug
mailing list