RPC DCOM Worm On The Loose

← Back to Stories (view on slashdot.org)

Posted by simoniker on Monday August 11, 2003 @08:58AM from the uh-oh-spaghettios dept.

GPez writes "The first of I'm sure many RPC DCOM worms affecting Windows is on its way, according to the Internet Storm Center. Patch those systems!" According to the site, "The worm uses the RPC DCOM vulnerability [affects Win2k through Server 2003] to propagate. Once it finds a vulnerable system, it will spawn a shell on port 4444 and use it to download the actual worm via tftp."

6 of 604 comments (clear)

Im safe in windows 98 but preffer linux by urbieta · 2003-08-11 09:01 · Score: 1, Troll

no need to reboot any time soon for that old windows 98 part since Im a linux junkie by now hehehe
Re:Great by Znonymous+Coward · 2003-08-11 09:10 · Score: 0, Troll

I believe the correct like is 207.44.202.162

--
Karma: The shiznight, mostly because I am the Drizzle.
Re:I have already patched my entire network. by flatface · 2003-08-11 09:26 · Score: 0, Troll

Even better, a Linux server on a firewall. Running Gentoo Linux. My box is tighter than a nervous virgin on prom night. Erm.. ^.^;;
Re:I have already patched my entire network. by advocate_one · 2003-08-11 09:44 · Score: 0, Troll

so you never set your system policies to prevent the downloading of certain file types then??? More fool you.

--
Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
if your an admin who is concerned about this issue by shaitand · 2003-08-11 12:30 · Score: 0, Troll

perhaps it's time to get a real operating system and quit playing with insecure toys.
LOL! by pmz · 2003-08-12 03:01 · Score: 0, Troll

Once it finds a vulnerable system, it will spawn a shell on port 4444 and use it to download the actual worm via tftp.

HAHAHA!!! You bought it, you deal with it, suckers!

--
Healthcare article at Kuro5hin