RSSZotob Worms Can Affect XP Computers
By Ed Oswald | Published August 24, 2005, 11:50 AM
Microsoft admitted that the Zotob worm and similar worms could also affect certain Windows XP computers in a security advisory issued on Tuesday. Computers running XP Service Pack 1 with a certain configuration were at risk.
Previously it was thought that only Windows 2000 systems were vulnerable to Zotob-like attacks.
Windows XP machines with file and printer sharing, as well as the guest account enabled, would be vulnerable to the worm. Also, the computer could not be connected to a network domain, which means in most cases a home environment rather than a business network.
Microsoft urges all users to ensure they have applied all the necessary security patches issued earlier in the month.
Zotob, while not as destructive as past worms, still made its presence known last week by hitting several news networks, including CNN who broke into regular programming to announce its computers were under attack and constantly rebooting.
The worm copies itself into the Windows System folder and modified a user's "hosts" file to prevent access to antivirus Web sites. The worm also initiates an FTP server on port 3333 and scans IP addresses using port 445 for other vulnerable systems.
A patch for the problem was issued by Microsoft earlier this month.
I have seen Zotob on about 12 pc's about 2/3 of them were 2000 sp4, the other 1/3 was XP Pro sp2. All have SAV9 corp installed, which did nothing, didn't even detect for the first few days. After I had patched most pc's in the network I had a couple late ones appear with SAV warning of a Zotob but could do nothing about it but warn about once a second till pached.
Score: 0
|That quote is from "Monty Python and the Holy Grail"
I'm still laughing at your reply to wincement!
Fortunately I'm patched and running SP2
Score: 0
|If anyone is still running XP SP1, they deserve to get whacked, and they probably already have other virus problems anyway.
Score: 0
|"What you've just said is one of the most insanely idiotic things I have ever heard.
At no point in your rambling, incoherent response, were you even close to anything that could be considered a rational thought. Everyone in this room is now dumber for having listened to it.
I award you no points, and may God have mercy on your soul."
Just a quote from a great movie, thought it was appropriate for this article. Honestly, if anyone isn't patched by now, they deserve to be infected with this worm.
Score: 0
|Nobody 'deserves' to be infected with a worm. But I feel your pain.
On a side not, Windows XP has always been vulnerable to this worm, it's just that Windows 2000 was more vulnerable by default than XP systems were.
Score: 0
|What movie was that from?
I'm running SP1 :-p
Score: 0
|The Movie: Billy Madison
Side note:
what movie is this from, "The Knights who say Nee"
Score: 0
|