Sasser: Another Preventable Virus
~~Mike Baynes,
MikesWhatsNews
As many of you have probably noticed, there is
another new virus making the rounds:
Sasser
ALIAS: Sasser.A, Worm.Win32.Sasser.a
Technical description of the virus:
http://www.f-secure.com/v-descs/sasser.shtml
F-Secure has developed a special disinfection tool
which can find and remove Sasser.A and Sasser.B infections.
The tool is available from the following locations:
The Sasser worm, takes advantage of a LSASS
vulnerability in Windows.
Like the Blaster worm which infected so many computers last year, it is
entirely preventable by application of the Microsoft Security Bulletin
MS04-011, which was issued by Microsoft on 13 April.
http://go.microsoft.com/?LinkID=466770
Quote:
Security Update for Microsoft Windows (835732)
http://www.microsoft.com/technet/security/bulletin/ms04-011.mspx
Issued: April 13, 2004
Updated: April 28, 2004
Version: 1.2
Summary
Who should read this document: Customers who use Microsoft
Windows.
Impact of vulnerability: Remote Code Execution
Maximum Severity Rating: Critical
Recommendation: Customers should apply the update immediately.
End Quote.
Once again many computer users have failed to apply the Microsoft patch.
I know many users are having problems with some of the MS patches but,
in this case, it may prove unwise not to install it.
Fortunately, having a firewall set to block out-bound traffic on port
TCP/9996 and TCP/445 will keep you safe.
Do not go online without a working firewall.
Mike Baynes is the
editor of
MikesWhatsNews
. To subscribe, send a blank email to
mikeswhatsnews-request@freelists.org?Subject=subscribe
See Mike's Anti-Virus pages ~
http://virusinfo.hackfix.org.
To subscribe, send a blank email to:
virusinfo-request@freelists.org?Subject=subscribe
|
,
