Windows RPC Flaw Exploited in Campus Hacker Attacks

Subject: Windows RPC Flaw Exploited in Campus Hacker Attacks
From: Gary Stoneburner <gary.stoneburner@nist.gov>
Date: Mon, 11 Aug 2003 13:26:20 -0400
Content-Type: multipart/alternative; boundary="=====================_11134703==.ALT"

re: http://infosecuritymag.techtarget.com/ss/0,295812,sid6_iss63,00.html#news2

"Cedric Bennett, director of information security at Stanford University, says 2,400 of his school's computers were tainted with deeply imbedded code. The unauthorized code, which Bennett declined to describe in detail, will have to be manually removed, a process that could take several hours for each compromised machine."

"More than 100 computers were also compromised at the University of California at Berkeley. Fearing that "tens of thousands" of PCs might not be patched against the RPC flaw, the university instituted a campus-wide network port shutdown."

Cheers,
Gary

************************************************************************** * Opinions expressed are not intended to reflect an official position ************************************************************************** * Gary Stoneburner
* Computer Security Division, National Institute of Standards & Technology
* 100 Bureau Drive, Stop 8930, Gaithersburg, MD 20899-8930
* Phone: 301-975-5394, FAX: 301-948-0279, Email: Stoneburner@nist.gov
* http://csrc.nist.gov/staff/stoneburner/gshome.html
**************************************************************************

Prev by Date: Network Security: Submarine Warfare
Next by Date: MSBlast worm a Frankenstein monster
Prev by thread: MSBlast worm a Frankenstein monster
Next by thread: Network Security: Submarine Warfare

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov