[nsp-sec] TCP/1533 increase
Jose Nazario
jose at arbor.net
Tue May 27 10:07:48 EDT 2008
SANS ISC is reporting a rise in TCP/1533 scanning in the past few days. it
may be related to a new, pre-auth issue in Lotus Sametime:
http://www.zerodayinitiative.com/advisories/ZDI-08-028/
here's ATLAS' view of the top sources in the past 24h for this service:
88.33.200.204 99.0%
60.190.114.222 1%
we're seeing a similar pattern than the ISC is seeing ...
-------------------------------------------------------------
jose nazario, ph.d. <jose at arbor.net>
security researcher, office of the CTO, arbor networks
v: (734) 821 1427 http://asert.arbornetworks.com/
More information about the nsp-security
mailing list