Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - Internet Storm Center Diary 2005-06-22 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Front Page Hack Update, Veritas Advisories

Published: 2005-06-22
Last Updated: 2005-06-22 20:02:43 UTC
by Chris Carboni (Version: 1)
0 comment(s)

Front Page Hack


First off, thanks to all who sent in log snippets, pcaps or an analysis of the Front Page hack that Joshua reported in yesterday's diary.


To sum up what we've seen, the attack seems to have been first observed back in March and may be generated by a poorly written worm


One reader reported this to be a precursor to the download of lsd.exe which is detected by Symantec as although the behavior that has been reported doesn't seem to match Symantec's description.


Veritas Advisories













Keywords:
0 comment(s)
Diary Archives