Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Horde exploit downloading Perl/Shellbot SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Horde exploit downloading Perl/Shellbot
As already mentioned in Friday's diary, exploits for the Horde App Framework vulnerability are making the rounds. The exploit downloads and installs two variants of Perl/Shellbot which connect back to IRC servers in Germany and the U.S. over tcp/4444. A Nessus Plugin is available to check for the Horde vulnerability.


383 Posts
ISC Handler
Apr 16th 2006

Sign Up for Free or Log In to start participating in the conversation!