[**] [1:1256:7] WEB-IIS CodeRed v2 root.exe access [**] [Classification: Web Application Attack] [Priority: 1] 05/11-22:20:20.131698 24.98.31.200:2821 -> 192.168.1.6:80 TCP TTL:108 TOS:0x0 ID:10289 IpLen:20 DgmLen:112 DF ***AP*** Seq: 0x952EDFFA Ack: 0xADF2206B Win: 0x4470 TcpLen: 20 [Xref => http://www.cert.org/advisories/CA-2001-19.html] |
[**] [1:1256:7] WEB-IIS CodeRed v2 root.exe access [**] [Classification: Web Application Attack] [Priority: 1] 05/11-22:20:24.290149 24.98.31.200:3052 -> 192.168.1.6:80 TCP TTL:108 TOS:0x0 ID:11844 IpLen:20 DgmLen:110 DF ***AP*** Seq: 0x95DE6616 Ack: 0xAE31B9D0 Win: 0x4470 TcpLen: 20 [Xref => http://www.cert.org/advisories/CA-2001-19.html] |