Add a computer worm taking advantage of the error MS06-040
Yesterday, Symatec warned there was a new computer worm targeting the security bug MS06-040 that appeared on the Internet.
Yesterday, Symatec warned there was a new computer worm targeting the security bug MS06-040 that appeared on the Internet.
The new computer worm - named " Randex.gel " - belongs to the ' network-ware ' computer worm line. The network-ware worm is a worm that can be remotely controlled via IRC (Internet Rely Chat) channels and automatically scans the internal network for infection. Therefore, the main function of the worm Randex.gel is to open a back door on infected systems to wait for the control command from their 'owner' via IRC channel.
Oliver Friedrichs - Symantec's director of security response group - said this could be a variant of the Randex worm. The only difference with that computer worm line is Randex.gel, which can exploit security vulnerabilities MS06-040.
Previous variations of the Randex worm line targeted other security vulnerabilities in Windows such as MS04-007, MS05-017, and MS05-039 - these errors have been fixed by Microsoft.
Friedrichs stated that the code that plays the role of exploiting security bugs mainly in the depth of Randex.gel is very different from other variants. In fact, this code is very similar to the code of HD Moore security researcher released two weeks ago.
Symantec said the Randex worm could spread in a lot of different ways like through MSN Messenger, AOL Instant Messenger, Yahoo Messenger, and ICQ. The Randex.gel worm can also be distributed through Microsoft SQL servers. If the Randex.gel worm finds a SQL server, it will immediately infect all databases located on that server.
Another function of the worm Randex.gel is to steal personal account information of eGold electronic payment service users when users log into egold.com website.
Although there are many such malicious functions, the Randex.gel worm cannot cause much damage because Microsoft has released the above security patch update.
Hoang Dung
- New worm hacked Linux via PHP application
- Microsoft re-released the MS06-042 update
- Where does the error 'Error 404' come from?
- Fix the error not turned off
- Mobler computer worm
- How to fix the error of not accessing Gmail
- Recover corrupted Real Media files
- Ways to cure blue screen errors
- Error MS06-040 made the number of zombies increase
- Add a security error Quicktime
What is the Snapdragon SiP chip? How to create a yellow circle around the mouse cursor on Windows Edit the Boot.ini file in Windows XP 3 ways to restart the remote computer via the Internet Vietnam computer market: Looking back a year How to restore deleted applications on Android How to increase the capacity of C drive on Windows 10, 8, 7 ... 8 security features of Windows operating system