On Fri, Nov 23, 2012 at 12:31 AM, Mike Mestnik <cheako+debian-secur...@mikemestnik.net> wrote: > On 11/22/12 11:33, Laurentiu Pancescu wrote: >> More likely: a vulnerability in their web service (some form of >> execution of attacker-provided code), combined with a local privilege >> elevation exploit (the Linux kernel had quite many such bugs, some are >> probably yet undiscovered). I find it interesting that the rootkit was >> written or customized specifically for squeeze.
I think this was a test of greater things to come. I would assume (mostly because to me it's ignorant not to assume this) that the author of the malware might have built it to target his preferred OS first and then would have expanded it later. It's much easier to build small and then work to greater things then to build big and possibly fail. -- To UNSUBSCRIBE, email to debian-security-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAM5XQnwmGjz1ZfMH+cqqgxbmgdt4jcE=5uu_edyzfzpflbn...@mail.gmail.com