[pchelpers] Re: system security settings

Hi gcox,

Saturday, August 23, 2003, 9:03:21 PM, you wrote:

g> The following is an excerpt from a web page at Symantec:
g> W32.Blaster.Worm is a worm that exploits the DCOM RPC vulnerability
g> (described in Microsoft Security Bulletin MS03-026
g> <http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security
g> /bulletin/MS03-026.asp>) using TCP port 135. The worm targets only Windows
g> 2000 and Windows XP machines. While Windows NT and Windows 2003 Server
g> machines are vulnerable to the aforementioned exploit (if not properly
g> patched), the worm is not coded to replicate to those systems.

g> Now let me ask you, if the worm is not  even coded to attempt to replicate
g> to all the systems that are vulnerable does it make sense to think the
g> author coded it to attack systems that aren't vulnerable? Your answer
g> implies that the worm attacks all systems but is only successful at
g> infecting some. Judging from the above quote that doesn't seem to be the
g> case.

Were you thinking it's a mind-reader (so to speak), so it can tell
whether a system is Win9x or Win2K/XP without attacking it first?

--Scott.


Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Good advice is like good paint- it only works if applied.

Other related posts: