Signature Detail

Short Name	TROJAN:MISC:PITFALL-SERV-RESP
Severity	High
Recommended	No
Recommended Action	Drop
Category	TROJAN
Keywords	pitfall suprise attack backdoor trojan
Release Date	2004/01/21
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

TROJAN: Pitfall Suprise Attack Initial Server Response

This signature detects the initial server response from a Pitfall backdoor Trojan. Detecting the initial response could indicate that the server is infected with the Pitfall Trojan. A successful attack can allow an attacker to perform a verity of malicious activities.

Extended Description

Pitfall Surprise is a backdoor Trojan that infects Windows operating systems. It allows remote attackers to take control of the infected host.

References

CVE: CVE-1999-0660
URL: http://www.pestpatrol.com/PestInfo/P/Pitfall.asp
URL: http://securityresponse.symantec.com/avcenter/nis_ids/s20215.html

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

TROJAN: Pitfall Suprise Attack Initial Server Response

Extended Description

References