[68054] in North American Network Operators' Group
Re: Possibly yet another MS mail worm
daemon@ATHENA.MIT.EDU (Curtis Maurand)
Mon Mar 1 09:17:42 2004
Date: Mon, 1 Mar 2004 09:16:29 -0500 (EST)
From: Curtis Maurand <curtis@maurand.com>
To: Todd Vierling <tv@duh.org>
Cc: nanog@merit.edu
In-Reply-To: <Pine.NEB.4.58.0402281557070.7892@server.duh.org>
Errors-To: owner-nanog-outgoing@merit.edu
On Sat, 28 Feb 2004, Todd Vierling wrote:
>
> On Fri, 27 Feb 2004, Stephen Milton wrote:
> Yah, "Bagle.C" is the notation used by F-Secure. This is indeed what it
> was.
>
> It's annoying how easily these things spread even though they don't rely on
> a specific OS vulnerabililty -- hell, it's an executable *in a zipfile*, so
> it requires opening the zipfile and then running the program inside it. Of
> course everyone will run it, even though it's named dygfwefuih.exe (random
> characters before .exe). <grumble>
Sure they do....its called COM/DCOM/OLE/ActiveX or whatever they
want to call it this week. Its on every windows system.
>
>
--
--
Curtis Maurand
mailto:curtis@maurand.com
http://www.maurand.com
