The Web    Google
1/6: Rbot-SX Worm Spreads to Shares

1/6: Rbot-SX Worm Spreads to Shares
January 6, 2005

W32/Rbot-SX is a Windows network worm that attempts to spread via network shares. The worm contains backdoor functions that allow unauthorized remote access to the infected computer via IRC channels while running in the background.

The worm spreads to network shares with weak passwords and also by using the LSASS security exploit (MS04-011), RPC-DCOM security exploit (MS03-039) and the WebDav security exploit (MS03-007).

The worm may also try to exploit backdoors and vulnerabilities used by the MyDoom family of worms.

More information can be found at Sophos page.

  • 10/29: Singu-B Allows Remote Access
  • Researcher: IE Cumulative Patch Inadequate
  • Neoteris Extends Gateway Access
  • House to Create Homeland Security Oversight Committee
  • Protect Your Passwords -- Part 1
  • 'Critical' Security Hole in Real's Helix Server
  • 4/26: Mytob-BO Worm Spreads Flaw
  • Intellitactics Upgrades Security Manager Tool
  • How hacking has entered the age of mass production.
  • 11/22: Swizzor-BQ Trojan Downloads, Runs Files
  • Worldwide Security Server Appliance Market Hits $379 Million
  • Cheap Security Camera