Code Red II

[Stephen Friedl <friedl () mtndew com>]

I am increasingly convinced that a new strain is running around, and
my gut says that this one is persistant and probably more damaging.
I have captured the binary code (which is quite different) and have
a writeup on it at http://www.unixwiz.net/techtips/CodeRedII.html and
hope others are able to analyze this in more detail.

Steve, who hopes that he's not reporting old news

--- 
Stephen J Friedl | Software Consultant | Tustin, CA |   +1 714 544-6561
www.unixwiz.net  | I speak for me only |   KA8CMY   | steve () unixwiz net

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com