Security Portal

Intrusion Prevention Service

Signature Version: 4.966


FTP active-BackConstruction 2.1 ftp open reply (CVE-1999-0660)
Threat Level: Critical
Release Date: 2006/11/8
Category: Backdoor/Trojan
Signature ID: 1050109
Included In:
Affected OS: Windows
Description: This event indicates that an intruder has successfully compromised your computer using the Windows trojan BackConstruction 2.1. The trojan server has sent a reply indicating that an ftp server has been started. Then the intruder can connect for access to the filesystem.
Impact: Information disclosure
Recommendation: Update vendor's patch.
False Positive: None
False Negative: None
Additional Information (Links open in new window):
Reference(s): CVE-1999-0660

Search the Threat Database
Enter Rule ID or Name