ISS X-Force has learned of the existence of a variant of the "Slapper" (also known as Slapper.A) worm that X-Force documented in a X-Force Security Alert on September 14, 2002. The new variant, named Slapper.B, has several subtle differences from the first Slapper worm, but it is for the most part an updated version of its predecessor. . . .
ISS X-Force has learned of the existence of a variant of the "Slapper" (also known as Slapper.A) worm that X-Force documented in a X-Force Security Alert on September 14, 2002. The new variant, named Slapper.B, has several subtle differences from the first Slapper worm, but it is for the most part an updated version of its predecessor. Both versions carry the same attack payload and attempt to exploit a previously disclosed vulnerability in the Secure Sockets Layer 2.0 (SSLv2) handshake process. Slapper.A and Slapper.B both target the Linux operating system running the Apache Web server with OpenSSL.

The link for this article located at ISS is no longer available.