| VID |
24014 |
| Severity |
40 |
| Port |
15858 |
| Protocol |
TCP |
| Class |
BackDoor |
| Detailed Description |
The remote host appears to be running CDK, which is a backdoor that can be used to control your system.
To use it, a cracker just has to connect onto this port, and send the password "ypi0ca". It is very likely that this host has been compromised.
* References:
http://www.nessus.org/plugins/index.php?view=single&id=10036 |
| Recommendation |
Restore your system from backups, contact CERT and your local authorities. |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
