[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Fwd: [Full-Disclosure] TCP Port 42 port scans? What the heck over...

To: "Full-Disclosure (E-mail)" <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: Fwd: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
From: wastedimage <wastedimage@xxxxxxxxx>
Date: Thu, 16 Dec 2004 14:32:44 -0600

I'm just curious if its moved past the scanning phase and someone is
actively trying to exploit a box.  A quick look at any traffic would
answer this.

image


On Thu, 16 Dec 2004 15:18:47 -0500, Valdis.Kletnieks@xxxxxx
<Valdis.Kletnieks@xxxxxx> wrote:
> On Tue, 14 Dec 2004 16:33:59 CST, wastedimage said:
> > can anyone provide me with a traffic sample of this?  I would really
> > like to see if this is the actual exploit or just a script kiddy
> > trying his little heart out.
>
> What's this '*THE* actual exploit' stuff? These things are rarely unique ;)
>
> And how do you count "script kiddy with *some other* actual exploit that
> happens to have the wrong offset for the SP you happen to be running"?
>
>
>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: James Lay
- Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: Florian Weimer
- Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: wastedimage
- Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
  - From: Valdis . Kletnieks

Prev by Date: Re: [Full-Disclosure] This sums up Yahoo!s security policy to a -T-
Next by Date: [Full-Disclosure] Re: Script Injection in Google Groups Beta
Previous by thread: Re: [Full-Disclosure] TCP Port 42 port scans? What the heck over...
Next by thread: [Full-Disclosure] Security breach database
Index(es):
- Date
- Thread