|
Description:
This worm exploits the following Windows vulnerabilities to propagate across networks:
- Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability
- IIS5/WEBDAV Buffer Overflow vulnerability
- RPC Locator Vulnerability
For more information about these Windows vulnerabilities, please refer to the following Microsoft Web pages:
It attempts to log into systems using a list of user names and passwords. This worm then drops a copy of itself in accessed machines.
It also terminates antivirus-related processes and dropped files by other malware. This worm steals CD keys of certain game applications.
It also has backdoor capabilities, allowing remote access to the compromised system.
It runs on Windows 2000 and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Mar. 4, 2004 4:30:14 PM GMT -0800
Description updated: Mar. 4, 2004 4:41:59 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
