The Slapper worm continued to spread quickly over the weekend, with some security experts putting the number of compromised servers as high as 6,000. As first reported by eWeek on Friday, the worm attacks Linux machines running the Apache Web server software with the OpenSSL tools installed. It exploits a buffer overrun vulnerability in the SSL handshake process using a forged client master key. It scans the Internet for vulnerable Apache machines and tries to deduce the Linux distribution on each machine from information in the "Server:" response header, experts say.
The link for this article located at Extreme Tech is no longer available.
