RE: Exploit?

[Michael Brown <mbrown () pathfire com>]

This e-mail acctually set off an alert...

Michael

-----Original Message-----
From: Hilton De Meillon [mailto:HDemeillon () brait com] 
Sent: Friday, June 14, 2002 2:30 AM
To: Snort-users (E-mail)
Subject: RE: [Snort-users] Exploit?


Yeah I've seen lots of them. The sig is for a Lotus Notes server though -
are you running Notes ??

Hilton.

-----Original Message-----
From: Michael Northup [mailto:mnorthup () burtonsaw com]
Sent: 14 June 2002 01:01 AM
To: snort-users () lists sourceforge net
Subject: [Snort-users] Exploit?


Today I'm seeing a lot of "SMTP RCPT TO overflow" alerts from a variety of
outside sources.  Is anyone else seeing the same?

Michael Northup
Burton Saw & Supply Co. ?ís+,¶¶ÓM'¦¸§´ð'se?Æ­S?Ãz÷¥¢-«°*'}êޝÇEURº
¬·nvò)ËjÅ^«!¶Úýׯr?즸§¶-,r?¿iÚSw^ÅÇæ²<«qà±Ùí{eSyzSíºÇ«²f¢-)à-+-Jz+¶ë®
Éb²Û,¢êÜyú+éÞ´j-¢Øb±DK¶?!jxºÇ«¢>b¢{(®éì¹»®&Þ?Ûi³ÿåSËl²<«qçè® §zßåSËlþX¬¶)
ߣû'¢»n±êìJz+¶ë®Éb²Ö«r¯zm§ÿðà ¡ÊÚÂW«r?¿­çb®Çé?åS˲z¶ë

_______________________________________________________________

Don't miss the 2002 Sprint PCS Application Developer's Conference August
25-28 in Las Vegas -
http://devcon.sprintpcs.com/adp/index.cfm?source=osdntextlink

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users

----------------------------------------------------------------------------
                   Bringing you mounds of caffeinated joy
                      >>>     http://thinkgeek.com/sf    <<<

_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users