検索:
ホーム   »     »   Mambo/XML_RPC worm making the rounds (Again)

Mambo/XML_RPC worm making the rounds (Again)

  • 投稿日:2006年2月21日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

Pport 80 malware is quite high, particularly those exploiting the Mambo mosConfig exploit. This exploit is not new. It just means that attackers are still able to succesfully compromise vulnerable machines.


The exploit downloads a shell script, which in turn downloads and executes other malware including the actual worm that does the exploiting (it also has a module for exploiting the XML-RPC vulnerability), as well as an IRC client (yes, to take part in an eveeel-botnet server).


What malwares are these you say? Check out our Virus Encyclopedia for the following malwares:



  • ELF_LUPPER
  • PERL_SHELLBOT
  • ELF_KAITEN
  • ELF_MARE

And if I missed something, you can always check our Advisories page for the latest malwares from our honeypots.

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.