[Full-disclosure] lots of connections to 64.40.117.19 port 80
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Fri Apr 18 16:11:41 BST 2008
On Fri, 18 Apr 2008 11:01:26 EDT, Joey Mengele said:
> I believe you are missing something. XSS is merely a type of
> vulnerability. It is very common for an XSS payload to include a
> DDoS component. If you had done your research before retorting you
> would have known this.
Yes, but although we have evidence that a DDoS of some sort is underway,
we have *ZERO*, *ZIP*, *ZILTCH*, *GOOSE-EGG* indication that an XSS was
involved. For all you know, it was an iframe injection into clients that
visited a compromised webserver that downloaded the DDoS tool.
Sounds more like a "textbook case of calling it an XSS because when you only
have a hammer everything looks like a nail".
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20080418/e7667e8b/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.