Exploit in ASP.net State Service?

Today I saw a scan for port 42424 TCP from 205.179.74.190. Port 42424 TCP is apparently used by the ASP.net State Service. There was a vulnerability announced (MS02-026) last year, but I don't remember seeing anyone scan for port 42424 TCP before. Is anyone else seeing this, or do you have an idea what this is? More info on the service appears in this Securing Your ASP.NET Application article.

Comments

Anonymous said…
Only a small spike in activity noticable at:
http://isc.sans.org/port_details.php?port=42424

Popular posts from this blog

Zeek in Action Videos

New Book! The Best of TaoSecurity Blog, Volume 4

MITRE ATT&CK Tactics Are Not Tactics