August 5, 2001

New IIS worm: Code Red II

Author: JT Smith

WormyGuy writes "There is a new IIS worm on the loose named Code Red II. It makes use of the same vulnerability as the earlier Code Red worms but the payload is different. This one leaves a number of backdoors in the systems. The best analyses of it are from SecurityFocus and eEye. The SecurityFocus ARIS system has some nice graphs of the worm growth. Discussion about the worm is ongoing in the incidents mailing list."


  • Linux
Click Here!