Threat Level: green Handler on Duty: Rick Wanner

SANS ISC: Horde exploit downloading Perl/Shellbot SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Horde exploit downloading Perl/Shellbot
As already mentioned in Friday's diary, exploits for the Horde App Framework vulnerability are making the rounds. The exploit downloads and installs two variants of Perl/Shellbot which connect back to IRC servers in Germany and the U.S. over tcp/4444. A Nessus Plugin is available to check for the Horde vulnerability.

Daniel

373 Posts
ISC Handler
Apr 16th 2006

Sign Up for Free or Log In to start participating in the conversation!