The security researchers at eEye Digital Security are not impressed with the Sasser worm
Published:
3 May 2004 y., Monday
The company, which found the flaws that were exploited by both the MSBlast worm and the Witty worm, on Saturday started analyzing the latest piece of attack code that takes advantage of a Microsoft Windows vulnerability discovered by its researchers. So far, eEye's analysts are surprised that the worm has spread so far.
The Sasser worm started spreading late Friday, and so far has not racked up the crowd of compromised computers that its predecessors have been able to claim. Such a limited spread could indicate that computer users are becoming more diligent about heeding warnings and patching their systems, but security researchers believe that the worm's poor programming has given network administrators a break.
"If this virus was better written, you would have seen more impact," said Alfred Huger, senior director of security firm Symantec's response center.
The Sasser worm spreads from infected computer to vulnerable computer with no user interaction required. The worm exploits a recent vulnerability in a component of Microsoft Windows known as the Local Security Authority Subsystem Service, or LSASS. After scanning for vulnerable Windows XP and Windows 2000 systems, the worm creates a remote connection to the system, installs a file transfer protocol (FTP) server and then downloads itself to the new host.
Šaltinis:
CNET News.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
search.lt presents newest links
more »
A new e-mail worm that's just beginning to wiggle its way across the Internet scours infected computers for image files containing child pornography, and alerts government agencies if any suspicious files are discovered.
more »
Two Teen Tech Titans Make the Grade
more »
The news that the Meta Group has found that between 65 and 75 percent of WAP users in Europe and Asia are no longer using their WAP services via their mobile phones, is indicative of this market segment.
more »
Trust services firm VeriSign Inc., owner of Network Solutions Inc., the largest registry/registrar in the world, Thursday threw the switch on its long-running Domain-Policy mailing list.
more »
If a Canadian firm successfully follows through with plans to retransmit network television content over the Internet, the multibillion-dollar entertainment industry could be thrown into the same sort of turmoil that the music industry faced because of th
more »
Criminal charges were brought against 90 people and companies Wednesday as part of a joint operation between the Justice Department and the National White Collar Crime Center -- charged with cutting down on Internet fraud.
more »
America Online, Inc.'s Instant Messenger service (AIM) is now available to VoiceStream Corp.'s 4 million subscribers.
more »
The web is often thought of either as a lawless place, filled with pornographers, gamblers, criminals and anarchists, or a vast virtual shopping mall where hordes of crazed consumers are feverishly maxing out their credit cards.
more »
search.lt presents newest links
more »