The Web    Google
1/6: Rbot-SX Worm Spreads to Shares

1/6: Rbot-SX Worm Spreads to Shares
January 6, 2005

W32/Rbot-SX is a Windows network worm that attempts to spread via network shares. The worm contains backdoor functions that allow unauthorized remote access to the infected computer via IRC channels while running in the background.

The worm spreads to network shares with weak passwords and also by using the LSASS security exploit (MS04-011), RPC-DCOM security exploit (MS03-039) and the WebDav security exploit (MS03-007).

The worm may also try to exploit backdoors and vulnerabilities used by the MyDoom family of worms.

More information can be found at Sophos page.

  • Securiant Aims Appliance at Small, Medium Businesses
  • 10/12: Forbot-BD Runs in Background
  • IRS Giving Goods Away
  • 1/6: Rbot-SX Worm Spreads to Shares
  • 7/16: Rbot-DP Trojan Has Spreading Capability
  • 2/11: Rbot-VT Worm Has Backdoor Ability
  • 5/19: Viperik-A Trojan Deletes Files & Info
  • 3/25: Sdbot-WG a Worm and IRC Trojan
  • KaVaDo Updates Application Security Software
  • 2/3: Rbot-SQ Worm Has Backdoor Abilities
  • California Police Use Wireless Fingerprinting on Patrol
  • Security Camera Companies and products