Worm KRYNOS.B

Date Submitted: 29-March-2005 7:20 pm
Questo worm si difonde sfruttando le reti peer-to-peer lasciando un file ZIP in apposite directory.
Inoltre si diffonde via email inviando un'email come la seguente:

Da:
security@microsoft.com

A:
un'indirizzo ottenuto da file HTM o TXT preensti sul sistema infetto

Oggetto: Microsoft Security Update

Corpo del messaggio:
* "Vulnerability in Windows Explorer Could Allow Remote Code Execution (612827)"
Affected Software:
* Impact of Vulnerability: Remote Code Execution
* Importance: High
* Maximum Severity Rating: Critical
* Recommendation: Customers should apply the attached update at the earliest opportunity
* Summary:
* Who should read this document: Customers who use Microsoft Windows
* X-Mailer: Secure Microsoft Client, Build 2.1
* X-MimeOLE: Produced By Secure Microsoft Client V2.1
* X-MSMail-Priority: High
* X-Priority: 1 (Highest)

Allegati di tipo:
ARC
ARJ
GZ
LZH
TGZ
ZIP
ZOO



«Previous Submission | Return To Submissions List | Next Submission»
marvel

MARVEL.IT

internet service provider

info@marvel.itmarvel homepage