The Web    Google
3/28: Mytob-S Worm Exploits LSASS Flaw

3/28: Mytob-S Worm Exploits LSASS Flaw
March 28, 2005

W32.Mytob.S@mm is a mass-mailing worm with back door capabilities that uses its own SMTP engine to send email to addresses that it gathers from the compromised computer. The worm also spreads by exploiting the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (as described in Microsoft Security Bulletin MS04-011).

Technical details can be found at Symantec page.

  • 2/25: Randex-CST Worm Targets Passwords
  • 5/3: SymbOS/Locknut-C Infects Handsets
  • ISPs Band Together Against Spam
  • Protect Your Passwords -- Part 1
  • 3/25: Sdbot-WG a Worm and IRC Trojan
  • Security Firms Sound Alarm on Latest Microsoft Flaws
  • 5/20: Mytob-EU Worm Drops Copy
  • 'Critical' Windows Hijack Flaw Reported
  • 4/29: Kelvir-D an IM Worm
  • Stomping Out Spam: The Spam Series, Part 1
  • 2/7: Agobot-PI Worm Changes Data
  • Compare Security Camera Products