Worm puts old IIS attack in full-auto mode
British TV news outfit ITN was the first major site we know of to be infiltrated by the sadmind/IIS worm, a new take on a past theme which automates attacks on Solaris and Microsoft IIS boxes, using two very old exploits.
The worm first infects systems running Solaris through version 7, exploiting the two-year-old sadmind buffer overflow vulnerability which gives up root access.