Linux.Slapper.D

Linux.Slapper.D is a worm that uses an OpenSSL buffer overflow exploit to run a shell on a remote computer. The worm targets vulnerable installations of the Apache Web server on Linux operating systems, which include versions of SuSe, Mandrake, RedHat, Slackware, and Debian.

Protection

• Initial Rapid Release version October 1, 2002
• Latest Rapid Release version August 20, 2008 revision 017
• Initial Daily Certified version October 1, 2002
• Latest Daily Certified version August 20, 2008 revision 016
• Initial Weekly Certified release date October 2, 2002

Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

• Wild Level: Low
• Number of Infections: 0 - 49
• Number of Sites: 0 - 2
• Geographical Distribution: Low
• Threat Containment: Easy
• Removal: Easy

Damage

• Damage Level: Low

Distribution

• Distribution Level: Low