A heads up on new worm affecting previous versions of RealVNC
Diana Hargus
d_hargus "at" yahoo.com
Fri Jan 12 14:03:00 2007
Hiyas,
Just had to clean up this new worm from an infected pc. Apparently the
vector was through an um-updated VNC on a friend's pc. Just another reason
to update and patch.
http://www.us.sophos.com/security/analyses/w32rbotgai.html
>From the writeup on the worm at Sophos:
W32/Rbot-GAI spreads to other network computers by exploiting common buffer
overflow vulnerabilities, including: LSASS (MS04-011), SRVSVC (MS06-040),
RPC-DCOM (MS04-012), ASN.1 (MS04-007) and RealVNC (CVE-2006-2369).
Otherwise, it is a great product!
Diana
ps Yes, I told him to update it and even sent him the link to do it, but
some people never learn...
--------------------------------------------------------------------------------
I am using the free version of SPAMfighter for private users.
It has removed 98004 spam emails to date.
Paying users do not have this message in their emails.
Try SPAMfighter for free now!