[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
FYI @Home user RE: [cobalt-users] Code Red Storm
- Subject: FYI @Home user RE: [cobalt-users] Code Red Storm
- From: "Dan Kriwitsky" <webhosting@xxxxxxxxx>
- Date: Thu Aug 9 03:44:58 2001
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
Thank you for your report of Code Red probes.
While we are not allowed to give out specific information regarding
subscriber identity, or specific action taken without legal process, we
have identified the offending user and taken appropriate action against
this account. If you are receiving 'get' command strings from an @Home
user or users, directed at port 80, it is likely that that originating
machine has been compromised by the Code Red virus. One of the effects
it has is to cause infected machines to search for other machines that
would be exploitable. Machines that are running unpatched versions of
Windows NT Server or 2000, with a Web Server and IIS (Microsoft Index
Server 2.0 or Indexing Service in Windows 2000) are vulnerable to this
exploit. If you are NOT running this OS and services, your computer is
not subject to this particular compromise. For more information on this
situation, point your browser here:
http://www.microsoft.com/technet/security/bulletin/MS01-033.asp
http://news.excite.com/news/ap/010805/20/code-red
http://news.cnet.com/news/0-1003-201-6625599-0.html
If you have are running this Operating System, Microsoft suggests that
you obtain and run the patch as soon as possible:
For Windows NT:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=30833
For Windows 2000:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=30800
For more information regarding our Acceptable Use Policy, please see the
following URL:
http://www.home.net/aup
@Home Network Policy Management Team
--
Dan Kriwitsky