Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Horde exploit downloading Perl/Shellbot SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Horde exploit downloading Perl/Shellbot
As already mentioned in Friday's diary, exploits for the Horde App Framework vulnerability are making the rounds. The exploit downloads and installs two variants of Perl/Shellbot which connect back to IRC servers in Germany and the U.S. over tcp/4444. A Nessus Plugin is available to check for the Horde vulnerability.

Daniel

367 Posts
ISC Handler
Apr 16th 2006

Sign Up for Free or Log In to start participating in the conversation!