Wednesday, March 02, 2005

Exploit in ASP.net State Service?

Today I saw a scan for port 42424 TCP from 205.179.74.190. Port 42424 TCP is apparently used by the ASP.net State Service. There was a vulnerability announced (MS02-026) last year, but I don't remember seeing anyone scan for port 42424 TCP before. Is anyone else seeing this, or do you have an idea what this is? More info on the service appears in this Securing Your ASP.NET Application article.

1 comment:

Anonymous said...

Only a small spike in activity noticable at:
http://isc.sans.org/port_details.php?port=42424