An automated attack targeting users of the open source Rejetto HTTP File Server (Rejetto HFS) tried to inject the IptabLes DDoS tool. The exploit, sent from a possible compromised IP address in China, was targeting CVE-2014-6287, a remote code execution bug. The vulnerability is in the findMacroMarker function, which is written in Microsoft VBScript. It’s likely the attackers have simply incorporated this exploit into a larger attack platform, researcher says.
Source: https://threatpost.com/ddos-exploit-targets-open-source-rejetto-hfs/111286/