SecurityFocus

Scans on TCP port 135 Feb 20 2003 09:12PM
Kevin Patz (jambo_cat yahoo com) (2 replies)

Starting in late October 2002, I've been seeing

occasional scans on TCP port 135 on my box. I also

see UDP scans on this port, and I know these are

Windows Messenger spam attempts, but I am wondering

what the TCP scans are for.

Could they be attempting to exploit

this: "Vulnerability: RPC Service DoS (port 135/tcp)

on Windows 2000 SP3" which I read about here:

http://www.securityfocus.com/archive/1/296114

Is it this, or could it be something else? Is it

possible to send Messenger spam via TCP/135?

KJP

------------------------------------------------------------------------
----

Do you know the base address of the Global Offset Table (GOT) on a Solaris 8
box?
CORE IMPACT does.
www.securityfocus.com/core

[ reply ]

IRC DDoS bots Mar 14 2003 08:04AM
grwolf (grwolf adelphia net) (1 replies)

Re: IRC DDoS bots Mar 14 2003 05:56PM
Johannes Ullrich (jullrich euclidian com) (2 replies)

Re: IRC DDoS bots Mar 17 2003 01:22PM
Jon Nelson (quincy linuxnotes net)

RE: IRC DDoS bots Mar 14 2003 07:17PM
James C Slora Jr (Jim Slora phra com)

Re: Scans on TCP port 135 Feb 21 2003 10:00PM
Dave Aitel (dave immunitysec com)