Sadmind

Sadmind
Common name Backdoor Sadmind
Aliases
  • sadmind/IIS
  • Worm.PoizonBox[1]
Type Computer worm
Point of origin China
Operating system(s) affected

Microsoft Windows

Written in English

The Sadmind worm was a Computer worm.

It exploited vulnerabilities in both Sun Microsystems' Solaris (Security Bulletin 00191) and Microsoft's Internet Information Services (MS00-078), for which a patch had been made available seven months earlier. It was discovered on May 8, 2001.[4]

fuck USA Government
fuck PoizonBOx
contact:sysadmcn@yahoo.com.cn
Message displayed on sites altered by Sadmind worm.

The worm defaced web servers with a message against the United States government[5] and the anti-Chinese cracking group PoizonBOx.[6]

Systems affected by version

Microsoft IIS:

Sun Microsystems (Solaris):

See also

References

  1. "Sadmind". F-secure. Retrieved 9 February 2013.
  2. "CERT® Advisory CA-2001-11 sadmind/IIS Worm". Cert. Retrieved 9 February 2013.
  3. "Microsoft IIS and PWS Extended Unicode Directory Traversal Vulnerability". Security Focus. Retrieved 9 February 2013.
  4. "Backdoor.Sadmind". Symantec. Retrieved 9 February 2013.
  5. "Unix/SadMind - Worm - Sophos threat analysis". Accessed January 13, 2008.
  6. Raiu, Costin. "One Sad Mind". Accessed January 13, 2008.
  7. "New Sadmind/IIS Worm Defaces Websites and Compromises Internet Security". e-Corp. Retrieved 9 February 2013.
  8. "Malware FAQ: Sadmind/IIS Worm". Sans. Retrieved 9 February 2013.

External links