|VIRUS NAME: Linux/Exploit-Su
The Linux/Su trojan was included inside a virus collector set that was sent to AVERT. The exploit code has not been encountered "in the wild".
This code is meant for the Linux Redhat flavor.
The exploit tries to remotely access/create /tmp/xp and to changes permissions, get root access, modifying /bin/su.
Comments inside the source indicate that the exploit was written back in 2001.
Usually Unix malware is very flavor/version/kernel specific, newer versions and/or security updates address many exploits.