myNetWatchman   KnowledgeBase

Pooling knowledge to
secure the internet.


mNW Reports  FAQ: mNW Reports




(Registered Users Only)


Look Up Incidents by IP Address
 

 

2004-07-06 -
The recent rash of port scans targeting tcp/1025 are likely sourced from malware attempting to exploit systems via Lsass vulnerability:
US CERT VU#753212Microsoft LSA Service contains buffer overflow in DsRolepInitializeLog() function