Sadmind
Jump to navigation
Jump to search
| Backdoor Sadmind | |
|---|---|
| Malware details | |
| Alias |
|
| Type | Computer worm |
| Origin | China |
| Technical details | |
| Platform | |
| Written in | English |
The Sadmind worm was a computer worm which exploited vulnerabilities in both Sun Microsystems' Solaris (Security Bulletin 00191, CVE-1999-0977) and Microsoft's Internet Information Services (MS00-078, CVE-2000-0884), for which a patch had been made available seven months earlier. It was discovered on May 8, 2001.[4]
Specifically, the virus affected the sadmind daemon on Solaris systems which had sadmind enabled in inetd.conf, since the sadmind daemon normally ran with root privileges.[5]
fuck USA Government
fuck PoizonBOx
fuck PoizonBOx
contact:sysadmcn@yahoo.com.cn
Message displayed on sites altered by Sadmind worm.
The worm defaced web servers with a message against the United States government[6] and the anti-Chinese cracking group PoizonBOx.[7]
Systems affected by version
[edit | edit source]- Version 4.0[8]
- Version 5.0
- Version 2.3
- Version 2.4[9]
See also
[edit | edit source]References
[edit | edit source]- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ "Unix/SadMind - Worm - Sophos threat analysis Archived 2021-10-21 at the Wayback Machine". Accessed January 13, 2008.
- ^ Raiu, Costin. "One Sad Mind Archived 2005-05-22 at the Wayback Machine". Accessed January 13, 2008.
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
- ^ Lua error in Module:Citation/CS1/Configuration at line 2172: attempt to index field '?' (a nil value).
