QODS ec

Saturday, June 05, 2004

VIRUS: W32.Korgo.A

Symantec Security Response - W32.Korgo.A: "W32.Korgo.A is a worm that attempts to exploit Microsoft LSASS Windows vulnerability, described in Microsoft Security Bulletin MS04-011. The worm also listens on TCP ports 113"

W32.Korgo.A is a worm that attempts to exploit Microsoft LSASS Windows vulnerability, described in Microsoft Security Bulletin MS04-011. The worm also listens on TCP ports 113, 2041, and 3067, and allows unauthorized access to the infected computer.

Note: Virus definitions dated prior to May 23, 2004 detect this threat as Bloodhound.Packed.

Also Known As: Worm.Win32.Padobot.b [Kaspersky], Exploit-Lsass.gen [McAfee]

Type: Worm
Infection Length: 34,880 bytes



Systems Affected: Windows 2000, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, Macintosh OS X, Novell Netware, OS/2, UNIX, Windows 3.x, Windows 95, Windows 98, Windows Me, Windows NT




0 Comments:

Post a Comment

<< Home


Get Firefox!