Nimbda

From: David Jones (kk7gw@yahoo.com)
Date: 01/30/03

• Next message: darren: "windows system32 config"
• Previous message: David Jones: "NT AUTHORITY LocalService password?"
• In reply to: Bombart: "Nimbda"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "David Jones" <kk7gw@yahoo.com>
Date: Thu, 30 Jan 2003 10:22:36 -0800

XP Pro ships with version 5.1, which is not vulnerable to
the buffer overflow exploit that Code Red/Nimda attempt
to use over IIS.

Nimda spreads via other vectors as well, such as network
shares and e-mail.

http://www.microsoft.com/technet/treeview/default.asp?
url=/technet/security/virus/nimda.asp

I assume you're running an anti-virus program? There's
something else in your configuration that's causing you
to be infected other than IIS/Remote Desktop.

>-----Original Message-----
>Hey Guys. I have a question about the Nimbda worm.
Around 6 months ago, I
>was hit my Nimbda. I reinstaled XP Pro around 3 times
more and kept getting
>hit by it. I then realized that it was because I was
enabling IIS for RD Web
>that I was vulnerable.
>
>Is there a patch I can download for this for XP Pro? If
so, where can I find
>it. Also, what version of IIS does XP Pro ship with?
>
>I'd like to start using the Remote Desktop Web service
again but will not
>risk getting Nimbda again. What can I do?
>
>Thanks.
>
>B.
>
>
>.
>

---

• Next message: darren: "windows system32 config"
• Previous message: David Jones: "NT AUTHORITY LocalService password?"
• In reply to: Bombart: "Nimbda"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(11)