Linux/Cdorked.A Backdoor

Critical Nessus Plugin ID 66391

Synopsis

The remote host seems to be infected by a variant of the Linux/Cdorked backdoor.

Description

The remote host seems to be infected by the Linux/Cdorked.A backdoor. This backdoor could allow an attacker remote access to the system. It can also cause users accessing an infected web server to be redirected to malicious websites.

Solution

Follow your organization's procedures for responding to an infected host.

See Also

http://www.nessus.org/u?2fd8b826

http://www.nessus.org/u?87a5c1fa

Plugin Details

Severity: Critical

ID: 66391

File Name: cdorked_remote.nbin

Version: Revision: 1.37

Type: remote

Family: Backdoors

Published: 2013/05/13

Modified: 2018/07/26

Dependencies: 11153

Risk Information

Risk Factor: Critical

CVSSv2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C