Zotob Worm



According to The Sans handlers diary, a worm exploiting one of the security vulnerabilities disclosed last week by Microsoft, is in the wild and spreading. The worm tagged as zotob.a exploits the ms05-039 vulnerability. (Sans reminds us that ms02-039 was the vuln. targetted by the slammer worm. Interesting coincidence.)

They are still at infocon yellow. (Note the infocon graphic at the bottom of each page.)


The moral of the story, again, is to make sure you’ve installed the patches on your systems. This is said not to affect Windows XP sp2 or windows server 2003, due to malformed username/password combination. Of course, virii are frequently modified and improved so I would hesitate to be comfortable. Windows update to make sure you’re protected.

The securityfix has this too.

Related Posts

Blog Traffic Exchange Related Posts
  • Windows XP repair install problems I've run into a few problems with a windows xp repair install in the last few days that I wanted to detail the problems and what the resolution was. First, it was someone elses laptop needing a hard drive replacement. The drive was imaged, but windows still would not boot,......
  • Atlantis resort in the Bahamas loses customer information... The identities of 50,000 customers of the Atlantis resort in the Bahamas has been lost. The information was copied from the hotel's customer database and can include credit card information as well as social security numbers as well. The information includes typical information such as names, addresses and credit card......
  • Esbot.a Symantec's site is also reporting another virus (technically a worm) targetting the MS05-039 vulnerability. This one is called w32.esbot.a and is also rated at level 3 on their 5 level threat assessment scale. This one creates a mutex called mousebm so that it can only run once. It creates a......
Blog Traffic Exchange Related Websites
  • FAQ about computer security Q: The virus blocked the registry access and how to get rid of it?A: You can deal with like this: 1. Click on Start -> Run (or Start Search in Windows Vista). 2. Enter GPEdit.msc and then press Enter. 3. Navigate to the following location: User Configuration -> Administrative Templates......
  • Microsoft Security Bulletin MS10-046 - Critical Microsoft Security Bulletin MS10-046 - Critical Vulnerability in Windows Shell Could Allow Remote Code Execution (2286198) Published: August 02, 2010¬†|¬†Updated: August 03, 2010 Version: 1.1 General Information Executive Summary This security update resolves a publicly disclosed vulnerability in Windows Shell. The vulnerability could allow remote code execution if the icon......
  • Free Internet Security Suite FREE Avira Premium Internet Security Software 6 month license Avira Internet Security Suite 9 is a comprehensive extremely high performance and detection internet security suite complete with a virus scanner and more which offers protection from both known and unknown malware threats. With built in GameMode, Backup and RescueCD you......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site