CNN hit by worm

[darkhooda]

They seemed to have fixed it; the bottom ticker is back!

[TheWahbinator]

And they're up.

But still, for a network this large, 1? hours is a good time to recover it in.

[Lexcyn]

They seemed to have fixed it; the bottom ticker is back!

586387465[/snapback]

NOOO!!

That worm actually did some good damage by removing it. :p

[bangbang023 Veteran]

Apparently they will eventually suffer the dire consequences of not listening to Microsoft. :rolleyes:  :sleep:

586387456[/snapback]

Listening to Microsoft? MS isn't forcing them to upgrade as the OS is still supported. The patch was released about a week ago so it's simply the fault of them not installing the patch and has nothing to do with them not upgrading to XP.

[+M2Ys4U Subscriber¹]

NOOO!!

That worm actually did some good damage by removing it. :p

586387470[/snapback]

yeah, lol

[Angel Blue01]

ABC news just complained about it. Has this patch been on Windows Update?

Does this effect Windows XP or not?

http://securityresponse.symantec.com/avcen...32.zotob.d.html

[randy_tho]

I believe this one was another self propogating worm. Looks at like 3 different ports and can install itself from another infected machine. It sets up an ftp server and randomly looks for open hosts on a subnet of 255.255.0.0. As an example, if the host is 10.1.1.5 it randomly looks at 10.1.1.6 or 10.1.3.4. It generates the last two octets. So it sounds as if a firewall/ or machine firewalls are setup properly this would have no effect.

Yeah read the above sarc link. :) Thats a different variant than what I read about earlier. I was looking at a and b.

It will propogate on all windows systems but only has a payload on 2000/XP.

[Raikou Tch]

Ahaha. I turned on CNN earlier, and wasn't sure if they just found out tons of people were getting it, or they themselves got it. Owned, I say.

[madnuke]

It seems quite a nice worm because it deletes a load of spyware and adware lol :laugh:

[blackice912 Veteran]

Videos! Need more videos!

[amr_01]

ABC news just complained about it. Has this patch been on Windows Update?

Does this effect Windows XP or not?

http://securityresponse.symantec.com/avcen...32.zotob.d.html

586387502[/snapback]

it affects xp if they were not patched, unless they have sp2.

[zedaxax]

Here's some video.  I couldn't decide what to upload so I just picked a clip where they recap everything.  Good stuff.

http://rapidshare.de/files/4056549/CNN_-_V...__PiP_.mpg.html

586387427[/snapback]

thanks

[re_freshing]

Wow, Windows 97 sounds like it was released...It just sounds like i've heard the name alot before. :)

[Jeremy1]

it affects xp if they were not patched, unless they have sp2.

586387559[/snapback]

Incorrect. This worm does not affect XP at all.

[crazihouse]

They were recently showing footage of inside CNN HQ of employee's computers, showing the windows startup and continuous shutdown dialogues and the employees getting mad. Hilarious!

"Microsoft has said that this worm is 'low impact'... I'm not sure what that's supposed to mean. *sarcastic " -Paula Zahn

[IbSta]

I hope Windows 3.1 is not affected :unsure: :rofl: :laugh:

[neo_joel]

/me will pay to see more video of this :happy: lol

[IbSta]

/me will pay to see more video of this  :happy: lol

586387679[/snapback]

Yes please someone post a direct link. Thanks.

[hagjohn]

Incorrect.? This worm does not affect XP at all.

586387662[/snapback]

W32.Zotob.E> is a worm that opens a back door and exploits the Microsoft Windows Plug and Play Buffer Overflow Vulnerability (described in Microsoft Security Bulletin MS05-039) on TCP port 445.

Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

WORM_RBOT.CBQ> This memory-resident worm drops a copy of itself in the Windows system folder as the file WINTBP.EXE.

It takes advantage of the Microsoft Windows Plug and Play vulnerability to propagate across networks. For more information regarding this vulnerability, refer to the following Microsoft Web page:

Systems Affected: Windows 98, ME, NT, 2000, XP

[.Kompressor]

:laugh: CNN, ABC, Catepillar co., New York Times, all affected...

I hope no one is using windows for life support... :rolleyes: and that their hospital admin have not put the critical computers on the network with other machines with internet access. That would suck!

[andy2004]

the end of the world is nigh :laugh:

[Jeremy1]

Systems Affected:  Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP

586387686[/snapback]

They're wrong. The vulnerability exists in XP and 2003, but those OSes do not allow anonymous remote access to the service, so the worm can't do it's work.

[andy2004]

is this already patched though ? am i right in thinking the update for this was out a few weeks ago ?

[Jeremy1]

is this already patched though ? am i right in thinking the update for this was out a few weeks ago ?

586387714[/snapback]

The patch has been out for 6 days.

[Sota]

I was under the impression it only affected XP Service Pack 1, Windows 2000, and Windows 98. XP Service Pack 2 would not be affected.

That is quite funny though CNN uses Trend and Trend was the one notifying of the PC community of the problem. Way to stay on top of the ball CNN :p