Hiyas,
Just had to clean up this new worm from an infected pc. Apparently the
vector was through an um-updated VNC on a friend's pc. Just another reason
to update and patch.
http://www.us.sophos.com/security/analyses/w32rbotgai.html
From the writeup on the worm at Sophos:
W32/Rbot-GAI spreads to other network computers by exploiting common buffer
overflow vulnerabilities, including: LSASS (MS04-011), SRVSVC (MS06-040),
RPC-DCOM (MS04-012), ASN.1 (MS04-007) and RealVNC (CVE-2006-2369).
Otherwise, it is a great product!
Diana
ps Yes, I told him to update it and even sent him the link to do it, but
some people never learn...
--------------------------------------------------------------------------------
I am using the free version of SPAMfighter for private users.
It has removed 98004 spam emails to date.
Paying users do not have this message in their emails.
Try SPAMfighter for free now!
_______________________________________________
VNC-List mailing list
[email protected]
To remove yourself from the list visit:
http://www.realvnc.com/mailman/listinfo/vnc-list
