Sadmind

From Wikipedia, the free encyclopedia
Jump to: navigation, search
Sadmind
Common name Backdoor Sadmind
Aliases
  • sadmind/IIS
  • Worm.PoizonBox[1]
Type Computer worm
Point of Origin China
Operating system(s) affected

Microsoft Windows

Written in English

The Sadmind worm was a Computer worm.

It exploited vulnerabilities in both Sun Microsystems' Solaris (Security Bulletin 00191) and Microsoft's Internet Information Services (MS00-078), for which a patch had been made available seven months earlier. It was discovered on May 8, 2001.[4]

fuck USA Government
fuck PoizonBOx
contact:sysadmcn@yahoo.com.cn
Message displayed on sites altered by Sadmind worm.

The worm defaced web servers with a message against the United States government[5] and the anti-Chinese cracking group PoizonBOx.[6]

Systems affected by version[edit]

Microsoft IIS:

  • Version 4.0[7]
  • Version 5.0

Sun Microsystems (Solaris):

  • Version 2.3
  • Version 2.4[8]

See also[edit]

References[edit]

  1. ^ "Sadmind". F-secure. Retrieved 9 February 2013. 
  2. ^ "CERT® Advisory CA-2001-11 sadmind/IIS Worm". Cert. Retrieved 9 February 2013. 
  3. ^ "Microsoft IIS and PWS Extended Unicode Directory Traversal Vulnerability". Security Focus. Retrieved 9 February 2013. 
  4. ^ "Backdoor.Sadmind". Symantec. Retrieved 9 February 2013. 
  5. ^ "Unix/SadMind - Worm - Sophos threat analysis". Accessed January 13, 2008.
  6. ^ Raiu, Costin. "One Sad Mind". Accessed January 13, 2008.
  7. ^ "New Sadmind/IIS Worm Defaces Websites and Compromises Internet Security". e-Corp. Retrieved 9 February 2013. 
  8. ^ "Malware FAQ: Sadmind/IIS Worm". Sans. Retrieved 9 February 2013. 

External links[edit]