[SECURITY-L] [S] Linux worm targets PHP flaw
CSIRT - UNICAMP
security em unicamp.br
Qua Fev 22 10:34:01 -03 2006
----- Forwarded message from Nelson Murilo <nelson em pangeia.com.br> -----
From: Nelson Murilo <nelson em pangeia.com.br>
Subject: [S] Linux worm targets PHP flaw
To: seguranca em pangeia.com.br
Date: Mon, 20 Feb 2006 20:39:59 -0300
[http://www.theregister.co.uk/2006/02/20/linux_worm/]
Linux worm targets PHP flaw
Silly Mare
By John Leyden
Published Monday 20th February 2006 15:09 GMT
Get breaking Reg news straight to your desktop - click here to find out how
Internet ne'er do wells have created a Linux worm which uses a recently discovered vulnerability in XML-RPC for PHP, a popular open source component used in many applications, to attack vulnerable systems. The Mare-D worm also tries to take advantage of a security flaw in Mambo to spread. If successful, the worm installs an IRC-controlled backdoor on compromised systems.
Most affected applications have been updated to address the security flaw exploited by Mare-D, which anti-virus firms rate as a low risk. The malware is noteworthy mainly because of the rarity of malware strains targeting Linux systems rather than the minimal threat is poses. ®
----- End forwarded message -----
Mais detalhes sobre a lista de discussão SECURITY-L