1999 CERT Incident Notes

Abstract

Recently a new scanning tool named "sscan" was announced on various public mailing lists. This tool is a derivative of the "mscan" tool that was widely used against a large number of sites in the second half of 1998. For more information about mscan, please read our earlier Incident Note IN98.02: http://www.cert.org/incident_notes/IN-98.02.htmlThe sscan tool performs probes against victim hosts to identify services which may potentially be vulnerable to exploitation. Though sscan itself does not attempt to exploit vulnerabilities, it can be configured to automatically execute scripts of commands that can be maliciously crafted to exploit vulnerabilities. Thus, it is possible for an unpredictable set of attacks to be mounted against a victim site in conjunction with the sscan probes.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2017
Accession Number
AD1134088

Entities

Organizations

  • Carnegie Mellon University

Tags

DTIC Thesaurus Topics

  • Anti-Virus Software
  • Computer Programming
  • Computers
  • Cybersecurity
  • Denial Of Service Attack
  • Detection
  • Directories
  • Engineering
  • Guarantees
  • Intellectual Property
  • Intrusion Detection
  • Intrusion Detection Systems
  • Intrusion Detectors
  • Law
  • Materials
  • Network Architecture
  • Network Protocols
  • Operating Systems
  • Patents
  • Software Development
  • Trojan Horse
  • Websites

Readers

  • Computational Linguistics
  • Cybersecurity.