Port 15871 (tcp/udp) Attack Activity - SANS Internet Storm Center

Handler on Duty: Didier Stevens

Threat Level: green

[get complete service list]

Port Information
Protocol	Service	Name
tcp	websense-msg	Websense Server Blocked Page Message port

Top IPs Scanning
Today	Yesterday

User Comments
Submitted By	Date
Comment
Rachel Rawlings	2005-06-12 05:23:08
IN a referrer context, this port seems to be used by the WebSense AfterWork proxy service[1]. I've had a few blog hits recently coming from http://nnn.nnn.nnn.nnn:15871/cgi-bin/afterWorkOptions.cgi -- the security risk seems higher for the user. :) [1] http://www.websense.com/products/about/afterwork/implementation.cfm

CVE Links
CVE #	Description