main

New worm targets two MS vulnerabilities

malebolgia   on 04 June 2004 - 15:38 · 7 comments & 718 views

Advertisement (Why?)
Antivirus software companies are warning customers about a new e-mail worm that targets unpatched Microsoft Corp. Windows machines with either of two recently disclosed software vulnerabilities. The new worm, known as both "Plexus" and "Explet.A," was first detected on Wednesday and spreads by exploiting Windows machines with vulnerabilities used by two recent worms, Sasser and Blaster, according to alerts. Network Associates Inc.'s McAfee Antivirus Emergency Response Team and Symantec Corp. both said the new worm does not pose a serious threat, but issued software updates on Thursday to detect it.

Like Sasser, Plexus can exploit the recently disclosed hole in the Windows component called Local Security Authority Subsystem Service, or LSASS, which Microsoft patched in April. Like the Blaster worm that appeared in August, 2003, Plexus can also crawl through a hole in a Windows component called the DCOM (Distributed Component Object Model) interface, which handles messages sent using the RPC (remote procedure call) protocol. (See here and here.)

News source: InfoWorld


System Requirements:
Operating System: Windows 98; 98SE; ME; 2000; XP
Memory: 128MB RAM
Processor:
- Windows 98, Windows 98SE/Me - Pentium class that meets OS requirements 166MHz or better
- Windows 2000 - Pentium class that meets OS requirements 166MHz or better
- Windows XP - Pentium that meets OS requirements 233MHz or better
Hard Drive Space: 129MB
Screen Resolution: 800x600, 256 colours
Connection: Modem 28.8Kbps; BYOA - TCP/IP; LAN

Important: To participate in this Beta test, you will need use the Thailand Beta build 4156.470a. This build will be made available for download from the Thailand Preview TOD Beta area (AOL Keyword: Thailand Preview TOD Beta) once the Beta test has started.

When the AOL Thailand Preview TOD Beta test begins, we will email all those who registered with further information and instructions on how to test.

Looking forward to your application!

Kind regards,

AOL Beta team"

Share this Article

About the Author

Full name: Unknown
User name: malebolgia
Contact: via forum PM
Submissions: View All
More: View Profile

Related news

Post a comment · Send to friend Comments · There are 7 additional comments
(4 replies) #1 Drestin on 04 Jun 2004 - 18:14
I hope these worms nail every fugging idiot who has STILL not patched their systems (or let them be patched automatically) - I mean, Come On! How pathetic it must be to be a worm writer who can only write code for holes patched on the day they are revealed. I cannot recall the last original worm written -- everyone I can name exploited a hole already patched! Worm writers are so lame!
#1.1 Mav Phoenix on 04 Jun 2004 - 19:06
Not as lame as those who don't patch.
#1.2 chacho on 04 Jun 2004 - 19:26
most people who dont patch are just ignorant when it comes to computers. they think they are safe out of the box.
#1.3 Drestin on 04 Jun 2004 - 20:45
Which is why I'm happy XP SP2 now practically forces windows critical updates to auto install. I wish it DID force them to install.
#1.4 WindowsNT on 05 Jun 2004 - 08:15
I would like to see that to, force patches to install regardless if you like it or not, but still allow system administrators to have control over it.
(1 reply) #2 Mr. Black on 05 Jun 2004 - 10:09
Here we go again...
#2.1 McGazza on 05 Jun 2004 - 22:03
lol the facts are true though dont you think Mr Black? Or are you fed up of hearing them again and again

Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!

Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.

Advertisement (Why?)
News powered by Neowin Management System (Build - 5.0.877) © 2000 - 2008 Neowin.net