FINGER_cmd_rootsh backdoor attempt


Code: p471

Severity: Warning


Description: This event is generated when access to a known UNIX backdoor deployed by attackers is attempted. In this case it may be a connection to a Trojaned version of fingerd.

Impact: Remote system compromise leading to a compromise of all resources the host is connected to.

Corrective: Restore the system from a known good backup. Reinstall the operating system.