VIRUS: Blaster/Lovsan worm spreading rapidly -
LinkBack Thread Tools
post #1 of 1 (permalink) Old Aug 12th, 2003, 02:30 PM Thread Starter
Senior Member
Mateo Mathieu's Avatar
Join Date: Jun 2001
Location: Piccadilly Circus
Posts: 61,799
Exclamation VIRUS: Blaster/Lovsan worm spreading rapidly

By Robert Jaques [12-08-2003]

Time to get those patches up-to-date ... again

Windows users have been warned of a fast-spreading worm which uses a documented Remote Procedure Call (RPC) buffer overrun vulnerability to take control of PCs.

The malicious code, dubbed Worm/Lovsan.A, discovered yesterday, attempts to exploit a documented vulnerability in Microsoft's Windows Distributed Component Object Model RPC interface.

The worm is also known as Blaster. It is spreading quickly to thousands of machines around the globe, according to initial reports from Network Associates customers.

It takes over compromised PCs through the RPC buffer overrun security hole in unpatched Microsoft Windows NT, Windows 2000, Windows XP and Windows Server 2003 operating systems.

Once the victim machine is infected a hacker can execute any code on it.

The TCP ports directly affected by this exploit include 135. Worm/Lovsan.A will download and run the file msblast.exe using the Trivial File Transfer Protocol.

"Unfortunately, unpatched systems are again proving to be a vector for fast-spreading internet-based worms," said Steven Sundermeier, vice president of products and services at Central Command.

"Updating antivirus software and patching systems against the latest exploits and vulnerabilities should become standard habit."

Inspiration is for amateurs

Mateo Mathieu is offline  

Quick Reply

Register Now

In order to be able to post messages on the forums, you must first register.
Please enter your desired user name, your email address and other required details in the form below.

User Name:
Please enter a password for your user account. Note that passwords are case-sensitive.


Confirm Password:
Email Address
Please enter a valid email address for yourself.

Email Address:


Human Verification

In order to verify that you are a human and not a spam bot, please enter the answer into the following box below based on the instructions contained in the graphic.

Thread Tools
Show Printable Version Show Printable Version
Email this Page Email this Page

Posting Rules  
You may not post new threads
You may post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

For the best viewing experience please update your browser to Google Chrome