|
Subscribe
to Virus Alert 
|
Win32/CodeRed Worm
Codered is an Internet worm. This worm will infect Windows NT and Windows 2000 systems, if IIS (Internet Information Service) is installed. This worm exploits the vulnerability of buffer overflow (Unchecked Buffer) under Index server. When the worm is run, it replicates itself in the memory. Using the replicated copies in the memory, worm tries to infect other IIS servers. Worm achieves this by generating random server addresses. It uses port 80 to spread across the servers. If the current system date is in between 20th and 28th, then it tries connecting www.whitehouse.gov government site. It also defaces the web pages on the infected server by setting the current language to US English and with the following contents: Welcome to http://www.worm.com ! The Codered first appeared in July 2001.
The worm is also known as W32/Bady.worm, HBC. Click
here to download a 30 day Evaluation Copy of |
About
Protector Plus Antivirus Software Packages:Proland Software is the developer of Protector Plus range of antivirus software packages. Protector Plus is available for Windows Vista, Windows 95/98/Me, Windows XP, Windows NT/2000/2003 servers and workstations, MS-Exchange 2000/2003, MS-DOS and NetWare servers.
 |
|
You can download the 30 day evaluation
copy of the
antivirus software free of cost for these platforms:
Copyright ©
2007 Proland Sofrware. All rights reserved.
