[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] worm attack

Subject: Re: [cobalt-users] worm attack
From: "MikeM" <MyRaQ@xxxxxxxxx>
Date: Wed Sep 19 22:15:05 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

On 9/19/01 at 9:43 PM Marco Baurdoux wrote:

|
|If you installed all the services packs ( You know these 100 MB of patches
|for security bugs ), especially SP2 then you shouldn't have be infested by
|nimba, however if you didn't that you gentilly helped spreading around the
|virus.
|
|Just for info, so that everyone can have a laugh, the swiss Post, had their
|servers blocked by the virus :-))
|=======================================================================


We have probably only seen the beginning of the mess caused by this worm.  From the Symantec anti-virus site: 

"Also, the worm will create open network shares on the infected computer, allowing access to the system.  During this process the worm creates the guest account with Administrator privileges."

http://www.symantec.com/avcenter/venc/data/w32.nimda.a@xxxxxxx




A wide open guest account with administrator privileges.   That is not a good thing.

Follow-Ups:
- Re: [cobalt-users] worm attack
  - From: Greg Hewitt-Long

References:
- Re: [cobalt-users] worm attack
  - From: Marco Baurdoux

Prev by Date: RE: [cobalt-users] Dead.Letter - How & Can I delete them Part 2
Next by Date: [cobalt-users] Dead list?
Previous by thread: Re: [cobalt-users] worm attack
Next by thread: Re: [cobalt-users] worm attack

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index