First Mass SQL Injection Worm? > Discussions

September 06, 2010 Login |

Home
FAQs
       SQL Server FAQ
       SQL Injection FAQ
       SQL Security Checklist
       SQL Server-Related Products
       SQL Server/MSDE-Based Applications
       SQL Server Version Database
Tools
       Lockdown Script
       Free Tools
       Free Analysis
       Group Policy Templates
       Commercial Tools
Community
       Discussions
       Links
About
Search

SQL Security Forums

Note: SQLSecurity.com does not allow nor require registration due to privacy concerns for users. SQLSecurity.com is open and anonymous for all. Please report any abuse or profanity.

Unanswered

Active Topics

Forums

Forums > Discussions > SQL Server Security

Subject: First Mass SQL Injection Worm?

Prev Next

Add Reply

Author

Messages

mulhall (guest)

01/21/2008 1:12 AM	Quote Reply Alert
There seems to be very little on the details of this news out on the web, apart from the blog entries at securityfocus, blogspot and the article Chip linked. So far I see details of the IIS exploit used and some of the payload.

Chip Andrews
Posts:114

01/21/2008 6:55 AM	Quote Reply Alert
If you want more info - just do a quick Google search for "uc8010(dot com)" and you should get plenty of info. There ate 98,880 references as of this posting. Keep in mind that many of those hits are infected sites so be careful. There is an excellent analysis here: http://isc.sans.org/diary.html?storyid=3823

Add Reply

Forums > Discussions > SQL Server Security > First Mass SQL Injection Worm?

Quick Reply

Username:
Subject:
Body:

ActiveForums 3.6