Language Selection

English French German Italian Portuguese Spanish

Linux/Lupper.worm rears its ugly head

Filed under
Security

This worm spreads by exploiting web servers hosting vulnerable PHP/CGI scripts. It is a modified derivative of the Linux/Slapper and BSD/Scalper worms from which it inherits the propagation strategy. It scans an entire class B subnet created by randomly choosing the first byte from an hard-coded list of A classes and randomly generating the second byte.

The worm blindly attacks web servers by sending malicious http requests on port 80. If the target server is running one of the vulnerable scripts at specific URLs and is configured to permit external shell commands and remote file download in the PHP/CGI environment, a copy of the worm could be downloaded and executed.

Like its precedents, the infected computers form a global network of compromised servers based on peer to peer communication principles. This network can be used, for example, for Distributed Denial of Service (DDoS) attacks or other purposes because it can accept remote commands. It is also capable of harvesting email addresses stored in files on the web server.

More Details.

More in Tux Machines

today's howtos

Leftovers: Gaming

Android Leftovers

Google announces Drive for Linux

Google just announced a slew of Chrome OS powered devices, including a Flip Chromebook from ASUS and a Chromebit device which is a complete Chrome OS device on a stick. Buried under these announcements where the arrival of Google Drive for Linux. For some reason Google doesn’t have Linux on their priority list anymore this Drive for Linux didn’t even get their own press release. Katie Roberts-Hoffman, Engineer and ARM Wrestler at Google wrote in a blog post announcing the new Chrome OS devices, “Google Drive for Linux brings the much requested service to those enterprise customers who run their businesses on Linux.” Read more