service pack sp1 and sp2
Posted 04 December 2004 - 10:55 PM
Posted 04 December 2004 - 11:07 PM
Monitoring software reveals intruders incessantly probing the Internet for vulnerable PCs on Sept. 10.
Less than four minutes from start of the test, an intruder breaks into Windows XP SP1 through the vulnerability most famously exploited by last May's Sasser worm. Ensuing instructions get garbled.
Eleven minutes later another intruder breaks into XP SP1 through the security hole exploited by the July 2003 MS Blaster worm. Ensuing instructions get garbled.
While the previous break-in is still unfolding, another intruder, using a different attacking computer, breaks into XP SP1 through the Sasser hole. Ensuing instructions get garbled.
An intruder breaks into XP SP1 for the fourth time using the MS Blaster hole. Things go smoothly. He begins uploading commands. He confirms XP SP1 is connected to the Internet, then begins making repeated attempts to connect XP SP1 to a server running an Internet Relay Chat channel, the equivalent of a private Instant Messaging line.
The intruder successfully connects XP SP1 to the IRC channel, which is probably also running on a hijacked PC.
The intruder instructs XP SP1 to navigate to a designated Web site, likely running on yet another hijacked PC. XP SP1 downloads a program, called ie.exe, from the Web site.
XP SP1 begins scanning the Internet, poised to similarly hijack other PCs exhibiting the same unpatched security hole.
Posted 06 December 2004 - 03:35 AM
I'm getting help thru this blog to see if we can figure it out.. If you operate with a wireless card you may have a problem. (Otherwise, I believe SP2 is a good thing!)
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users