At 08:51 PM 5/7/01 -0400, John Brandis wrote:
>I was hacked by , Sysadmcn
>He got in and changed the web site to F----- USA Govt.....
>Does any one know what other changes to NT2000, besides renaming of the
>default web page, to one that he added. Also, does any one know how he got
>in ?????
>
>
>----- Original Message -----
>From: "Kevin O'Gilvie"
>To:
>Sent: Tuesday, May 08, 2001 12:32 AM
>Subject: Just been Hacked!!!!! [7:3452]
>
>
> > Apparently over the weekend Poison Box got pass my Pix and overwrote some
> > files on the intranet Box and maybe more damage than I know of at this
> > Moment. I need help on finding out hjw they got in and how to prevent it
> > happeneing in the future. Please help.
> >
> > Thanks,
> >
> > Kevin
NT2000? You mean windows 2000? Probably the latest exploit in IIS 5.0 and
Windows 2000 if you have default printer controls enabled or something.
http://www.microsoft.com/technet/security/bulletin/MS01-023.asp
Quite brutal.
-Carroll Kong
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=3515&t=3452
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
