Re: [exim] Script kiddies?

Top Page
This message is part of the following thread:
M\the complete thread tree sorted by date
MMMike Cardwell at <-
 
Delete this message
Reply to this message
Author: Jason W.
Date:  
To: exim-users
Subject: Re: [exim] Script kiddies?
On Wed, Jan 12, 2011 at 8:36 AM, Ted Cooper <eximX0902w@???> wrote:

> There is the possibility that this has become part of some script kiddie
> exploit kit now so there may be more of these attacks against servers
> running old versions. Luckily it's not very well written and falls over
> fairly quickly.

Since the exploit was published, I have seen quite a few alerts from
snort on my exim box on what I think is the attack, but I haven't
probed too deep into it:

[**] [124:1:1] (smtp) Attempted command buffer overflow: more than 512
chars [**][Classification: Attempted Administrator Privilege Gain]
[Priority: 1]

--
HTH, YMMV, HANW :)

Jason

The path to enlightenment is /usr/bin/enlightenment.

This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] exim 4.7 slownessRe: [exim] Problem with MAIL FROM setting->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)