Oliver Friedrichs, director of Symantec security response group said that corporations are being attacked with a worm related to a Microsoft vulnerability involving all its supported versions of the Windows operating system.
According to Symantec's analysis, W32.Randex.GEL is a network-aware worm that opens a back door on compromised machines and programs them to listen for additional commands over an Internet Rely Chat (IRC) channel. This could allow attackers to:
Download and execute files
List, stop, and start processes and threads
Launch a denial-of-service attack
Open a command shell on the compromised computer
Create a proxy server
Log keystrokes
It allows a hacker to install programs, view changes, delete data or create new accounts with full user rights. MSN Messenger, AOL Instant Messaging, Yahoo Messenger and other instant messaging systems can pass the new worm, which is a variant of an early version.
The Department of Homeland Security advised users earlier this month to apply a security patch for the Microsoft vulnerability.
print
save
email
comment
Copyright @ 2004 Software & Support Media
Powered By Media Teknologi Informasi Corp.
Privacy PolicyTerms of Use
