Threat Level: green Handler on Duty: Russell Eubanks

SANS ISC: Port 8008 (tcp/udp) Attack Activity - SANS Internet Storm Center Port 8008 (tcp/udp) Attack Activity


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Loading...
[get complete service list]
Port Information
Protocol Service Name
tcp http-alt HTTP Alternate
tcp novell-http Novell Netware Management Protocol
udp http-alt HTTP Alternate
Top IPs Scanning
TodayYesterday
172.105.4.227 (267)145.239.41.135 (4077)
45.79.152.7 (258)172.105.4.227 (1333)
172.105.11.111 (107)45.79.152.7 (623)
80.85.86.175 (97)172.105.4.63 (592)
172.105.4.63 (79)172.105.11.111 (586)
198.108.67.48 (75)80.85.86.175 (536)
104.223.103.146 (23)198.108.67.48 (357)
198.20.103.242 (19)159.203.201.151 (150)
198.143.155.138 (18)120.52.152.17 (119)
107.6.183.162 (18)159.203.201.112 (114)
Port diary mentions
URL
Port 8008; Quiet Day, Thanks!; Money-Back Guarantee; Follow the Bouncing Malware VII: All That Glitters Is Not Gold
User Comments
Submitted By Date
Comment
bart 2013-08-08 00:25:13
port 8008 (and port 8010) are used on fortigate firewall for block and override pages, see http://kb.fortinet.com/kb/microsites/microsite.do?cmd=displayKC&externalId=FD33190
2008-05-15 14:28:42
TCP port 8008 is the default port used by OWASP's WebScarab project. See http://www.owasp.org/index.php/WebScarab_Getting_Started for more details.
FrSIRT 2005-08-18 21:25:19
This port is used by Novell eDirectory Server iMonitor which is vulnerable to a critical stack overflow. http://www.frsirt.com/english/advisories/2005/1403 http://www.frsirt.com/exploits/20050813.edirectory_imonitor.pm.php Alexandre B.
2005-06-30 15:55:33
TCP 8008 used along with UDP 4004 by PPLive, a P2P system for watching TV online, see: http://www.streamsports.net/pplive.html
Add a comment
CVE Links
CVE # Description