A Worm's Worm
Carnildo writes "There's a new worm out, according to the Register, but one with a twist. This one, called 'Dabber', infects computers by exploiting a security hole in the Sasser worm."
← Back to Stories (view on slashdot.org)
Jeez, they never fully test these worms before release. No wonder they'd have security issues.
Since when has this country used intellectual elite as a pejorative term?
Worm writers have got to start taking security more seriously.
This is an all new low. Now virus programmers will have to make their virus's better so they dont get infected by another virus.
I think everyone should go ultra secure, the best firewall ever... Disconnect from the net. It would make this all alot easier on us.
snowulf.com
...we need to stop relying on thrid-party worms, we need Micro-Soft certified worms to ensure our securtity....
Windows is only $500 if your time is worthless.
So now worms come with hooks for third party plug-in's?
Would that make the security flaw a ::cough:: "Wormhole"?
The author in response to the news announce that he will be releasing Service Pack 1 within the next week. Make sure to set up your computer to get updates automatically from update.sasser.com.
Microsoft Security Bulletin MS05-014
Security Update for Microsoft Windows (93212)
Issued: May 14, 2004
Updated: May 14, 2004
Version: 1.0
Summary
Who should read this document: Customers who use the Sasser worm
Impact of vulnerability: Remote Code Execution
Maximum Severity Rating: Critical
Recommendation: Customers running the Sasser worm should apply the update immediately to be protected from Dabber.
Security Update Replacement: This bulletin replaces several prior security updates. See the frequently asked questions (FAQ) section of this bulletin for the complete list.
Caveats: The security update is for Windows 2000, XP Pro and Home, and Windows 2003 server platforms. As a prerequisite, the security update requires your system be infected with Sasser.
To download the Sasser worm, please open Outlook Express or Outlook 2000/XP and execute any attachements you have recieved from unknown senders. If you are not using Sasser you do not need to install this update.
Once installed your system will be immune from being infected with Dabber which exploits a flaw in the widely popular Sasser worm.
Tested Software and Security Update Download Locations:
Affected Software:
Microsoft Windows 2000 Service Pack 2, Microsoft Windows 2000 Service Pack 3, and Microsoft Windows 2000 Service Pack 4 - Download the update
Microsoft Windows XP and Microsoft Windows XP Service Pack 1 - Download the update
Microsoft Windows XP 64-Bit Edition Service Pack 1 - Download the update
Microsoft Windows XP 64-Bit Edition Version 2003 - Download the update
Microsoft Windows Server(TM) 2003 - Download the update
Microsoft Windows Server 2003 64-Bit Edition - Download the update
Something like a rear entry into bonzi buddies behind?
So where do I doenload the patch so my Sasser isn't vulnerable?
itadakimasu
I told you not to try Sasser, it's a gateway worm! IT LEADS TO HARDER, MORE DANGEROUS WORMS!
Are you secure enough in your masculinity to run 'man touch'?
if you have windows, type, "format C:"
Why yes, I have windows. I even have doors too. I typed "format C:" like you said but I just got a message saying "the page cannot be displayed".
In this world nothing is certain but death, taxes and flawed car analogies.
Program code so advanced it travels through worm holes!
*rimshot*
CAn'T CompreHend SARcaSm?