Did anyone else see that one of Microsoft's windowsupdate.microsoft.com servers got bit by this worm? It went away when we refreshed the screen and presumably rolled over to another server, but it is definitely on at least one of their servers. I know MS watches this list, so I hope they will be checking their servers before this starts the DDOS tomorrow. Marc Maiffret wrote: > > The following is a detailed analysis of the "Code Red" .ida worm that we > reported on July 17th 2001. > <snip>
- Full analysis of the .ida "Code Red" worm. Marc Maiffret
- Re: [BUGTRAQ] Full analysis of the .ida "Cod... Joe Harris
- Re: Full analysis of the .ida "Code Red"... Laurence Hand
- Re: Full analysis of the .ida "Code Red&... Ryan Russell
- RE: Full analysis of the .ida "Code ... Marc Maiffret
- RE: Full analysis of the .ida "C... Eric Chien
- Re: Full analysis of the .ida "Code Red&... Pierre Vandevenne
- Mitigating some of the effects of the Code Red wo... LARD BENJAMIN LEE
- Re: Mitigating some of the effects of the Cod... Vincas Ciziunas
- Re: Mitigating some of the effects of the Cod... Johannes B. Ullrich
- Re: Mitigating some of the effects of the Cod... Ryan Russell
