Worm feasts on latest Windows vuln | The Register

Skip to content

Security:

News Tools

Reg Shops

Top Stories

Read more top stories

Related Whitepapers

Solution Brief: Reduce Energy Costs
With Green IT Solutions
Search Engine Link Spam
Risks, Threats, Solution
Gartner Paper: US Data Centers - The Calm Before the Storm
How to handle future energy demands
Enforce Your Email and Web Acceptable Usage Policies
Not Just Words
Gartner Report: How IT Management Can "Green" the Data Center
Establishing energy efficiency
Eliminating the Security Risk of Sending Confidential Information by Email
Email Encryption

The Register » Security » Anti-Virus »

Worm feasts on latest Windows vuln

Ooh Betty, it's happening again

By John Leyden → More by this author

Published Monday 14th August 2006 14:35 GMT

Virus writers have adapted an existing family of worms to exploit a recently patched, high-profile Windows security vulnerability.

Corporate admins are being are urged to redouble their efforts to roll out security patches as quickly as possible.

The Cuebot-L and Cuebot-M worms spread via AOL instant messenger, exploiting the MS06-040 vulnerability in Windows Server Service.

If successful, the latest variants of the worm turn off security controls in the Windows firewall and open a backdoor onto compromised machines, allowing hackers to remotely control machines, which thereafter become zombie clients in botnet networks.

Previous versions of the worm caused two earlier Windows vulnerabilities to spread, as explained in an advisory by CA here.

Microsoft last week released a "critical" patch for the Windows server flaw exploited by Cuebot-L and Cuebot-M. Security experts were quick to see its potential for exploitation, now realised with the Cuebot-L and Cuebot-M worms.

The Department of Homeland Security took the unusual step of warning of the seriousness of the flaw shortly after Redmond's release of the corresponding software fix. ®

Email Encryption report: Eliminating the Security Risk of Sending Confidential Information by Email

Track this type of story as a custom Atom/RSS feed or by email.

Related stories

MS Explorer foundering after UFO strike (23 November 2007)
US cyber chief talks tough on security (9 February 2007)
PDFs open critical hole in Internet Explorer (1 December 2006)
Symbian phones targeted as carriers for Windows worm (6 September 2006)
Microsoft flaw fix opens users to attack (24 August 2006)
Mocbot worm fuels zombie surge (23 August 2006)
Bot spreads using latest Windows flaw (17 August 2006)
MS releases dirty dozen (9 August 2006)
Open source blamed for malware development (18 July 2006)
JavaScript worm targets Yahoo! (12 June 2006)
IM worm installs rogue browser (22 May 2006)
Exchange flaw poses 'worm risk' (10 May 2006)
UK.plc struggles to eradicate viral infection (28 February 2006)

Post to Slashdot

Add to del.icio.us

Previous Article

From small embedded OS to the world's most used open mobile OS

whitepaper title

Solution Brief: Reduce Energy Costs

Energy consumption has become a big issue. Dramatically increase server utilization and significantly reduce energy costs through Virtualization..

whitepaper title

Search Engine Link Spam

Spammers are constantly finding new, creative ways to attack your network. Learn how search engine links are the latest weapon of choice.

Whitepapers	Jobs
Protecting Online Customers from Man-in-the-Middle Attacks The Botnet Threat Managing and Integrating Data in an SAP Environment The Perfect (Virtual) Marriage	Perl Developer Perl / Sybase Developer - Tax and Regulatory Reporting Group - Investment Bank Network Operations Engineer/ Perl or PHP Programmer for a Media Related Company Sr. Perl Programmer Perl Developer

Top 20 stories • All The Week’s Headlines • Archive • Search