Thursday, 24 August 2006
Symantec Reports New Microsoft-related Worm |
| |
|
| |
Oliver Friedrichs, director of Symantec security response group said that corporations are being attacked with a worm related to a Microsoft vulnerability involving all its supported versions of the Windows operating system.
According to Symantec's analysis, W32.Randex.GEL is a network-aware worm that opens a back door on compromised machines and programs them to listen for additional commands over an Internet Rely Chat (IRC) channel. This could allow attackers to:
- Download and execute files
- List, stop, and start processes and threads
- Launch a denial-of-service attack
- Open a command shell on the compromised computer
- Create a proxy server
- Log keystrokes
It allows a hacker to install programs, view changes, delete data or create new accounts with full user rights. MSN Messenger, AOL Instant Messaging, Yahoo Messenger and other instant messaging systems can pass the new worm, which is a variant of an early version.
The Department of Homeland Security advised users earlier this month to apply a security patch for the Microsoft vulnerability.
|
| |
|
|
| |
|
|
| |
|
|
| |
|
