BitchX Trojan Horse Vulnerability

It has been announced that the server hosting BitchX, www.bitchx.org, was compromised recently. It has been reported that the intruder made modifications to the source code of BitchX to include trojan horse code. Downloads of the source code of BitchX from www.bitchx.org, and mirrors, likely contain the trojan code.

Reports say that the trojan will run once upon compilation of BitchX. Once the trojan is executed, it attempts to connect to host 207.178.61.5 on port 6667.

The trojan horse modifications can be found in the configure script.

This BID will be updated as more information becomes available.


 

Privacy Statement
Copyright 2010, SecurityFocus