Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Virus
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Virus Outbreak Attacking MS05-039

from [Peter Wan] Network Security [Permanent Link]
Subject: Re: Virus Outbreak Attacking MS05-039
Date: Wed, 17 Aug 2005 11:16:14 -0400 
According to the ISC diary archive:

Zotob affecting some XP SP2/2003?
Reader Samuli writes in (thanks Samuli!) pointing out that the
houseofdabus code used in the Zotob worm to exploit the Microsoft PnP
vulnerability addresses in MS05-039 relies on NULL sessions to exploit
the target system. Default installations of Windows XP SP2 and Windows
2003 do not have NULL sessions enabled, and thus are not affected by
the worm. However, some server roles may require administrators to
enable NULL session functionality, such as legacy domain controllers,
Microsoft Exchange servers, Microsoft SQL Servers, etc. If you have
permitted NULL session access on your managed systems, you may be at
risk of infection by one of the Zotob variants.


On 8/15/05, Eddie Willett <Eddie.Willett@richmond.ppdi.com> wrote:

I have read that this virus can be spread on any windows os but only
affects 2000, 2003??, xp?? I have gotten conflicting reports about the
last.  What is the truth to this.  Does anyone know?

Eddie


-- 
Peter Wan <peter.n.wan@gmail.com>
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: wintbp.exe, alex shipp
Next by Date:  anti-phishing implementation, Bjorn Borg
Previous by Thread:  RE: Virus Outbreak Attacking MS05-039, Eddie Willett
Next by Thread:  RE: Virus Outbreak Attacking MS05-039, Ziots, Edward
Indexes:  [Date] [Thread] [Top] [All Lists]