|
Description:
This worm spreads via network shares and exploits certain vulnerabilities to propagate across networks. It takes advantage of the following Windows vulnerability:
Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability
For more information about this Windows vulnerability, please refer to the following Microsoft Web page:
Microsoft Security Bulletin MS03-026
This worm attempts to log in to systems using a list of user names and passwords hardcoded it its body. It then drops a copy of itself in the accessed machines.
This worm steals CD keys of certain game applications. It also has backdoor capabilities and may execute commands issued by a remote user.
This worm runs on Windows NT, 2000 and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Jul. 7, 2004 12:15:04 PM GMT -0800
Description updated: Jul. 8, 2004 12:17:33 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
