Last night, AIProtect caught a bunch of "RPC Novell NetWare NFS Portmapper RPC Module Stack Overflow" attacks coming from my Win10 PC during or immediately after M$ update. I hit the "update and shutdown" option ~10m earlier, went off to read and didn't notice anything until this morning, so I don't know if it happened during or after the update. Don't find anything being generally reported about similar problems -- but searching for any part of the Security Alert string turns up a gajillion irrelevant topics, none relevant.
The blanked out address is the LAN (non-routable) IP for the Win10 host. My concern is that the attack claims to originate from that machine - but nothing shows up for any virus scan &c.
Any guesses? Found some older articles about DDOS using UDP packets w/ forged IP; recent Memcrashed attack at github. No idea if related.
The blanked out address is the LAN (non-routable) IP for the Win10 host. My concern is that the attack claims to originate from that machine - but nothing shows up for any virus scan &c.
Any guesses? Found some older articles about DDOS using UDP packets w/ forged IP; recent Memcrashed attack at github. No idea if related.
Last edited: