CERTŪ Advisory CA-2002-27 Apache/mod_ssl Worm

Subject: CERTŪ Advisory CA-2002-27 Apache/mod_ssl Worm
From: Buddha (buddha@gci.net)
Date: Mon Sep 16 2002 - 14:20:18 AKDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: Fielder George Dowding: "Re: old tape needed?"
• Previous message: Jon Reynolds: "snd problem with HP Laptop"

Since no one has posted this yet, I'll spread the word.

http://www.cert.org/advisories/CA-2002-27.html

Systems Affected
Linux systems running Apache with mod_ssl accessing SSLv2-enabled OpenSSL
0.9.6d or earlier on Intel x86 architectures

Overview
The CERT/CC has received reports of self-propagating malicious code which
exploits a vulnerability (VU#102795) in OpenSSL. This malicious code has
been referred to as Apache/mod_ssl worm, linux.slapper.worm and bugtraq.c
worm. Reports received by the CERT/CC indicate that the Apache/mod_ssl
worm has already infected thousands of systems.

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: Fielder George Dowding: "Re: old tape needed?"
• Previous message: Jon Reynolds: "snd problem with HP Laptop"

This archive was generated by hypermail 2a23 : Mon Sep 16 2002 - 14:12:32 AKDT