Will the Sasser worm become the next Blaster?

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Will the Sasser worm become the next Blaster?
From: kers0r <root@xxxxxxxxxxxxx>
Date: 2 May 2004 01:29:43 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm


The LSASS Sasser worm is spreading through the documented MS04-011 (LSASS) 
vulnerability. Presently this worm has not gotten to plague proportions but 
statistically it may well. 

Apart from the Sasser worm problem, there also remains the problem of human 
hackers exploiting this hole. Warez ftp hackers have already started using an 
exploit targeting unpatched systems creating "pubstro" warez dumps. The DCOM 
vulnerability saw numerous script kiddie tools created that allowed trojan 
hackers to upload and run trojan servers, will we see another wave of tools 
being created? 

-----------------------------------
Jonathan Read (aka kers0r)
http://www.anti-trojan.org

Follow-Ups:
- Re: Will the Sasser worm become the next Blaster?
  - From: Gadi Evron

Prev by Date: LNSA-#2004-0014: X-Chat vulnerability in Socks-5 proxy
Next by Date: New LSASS-based worm finally here (Sasser)
Previous by thread: LNSA-#2004-0014: X-Chat vulnerability in Socks-5 proxy
Next by thread: Re: Will the Sasser worm become the next Blaster?
Index(es):
- Date
- Thread