Worm: W32/Lovsan.worm

Central Command reports a new W32.Blaster.Worm which exploits the DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026) has begun circulating around the Internet. The worm is also being referred to as W32/Lovsan.worm.

The worm affects Windows 2000 and Windows XP systems.

The worm will attempt to download and run the file Msblast.exe using the Trivial File Transfer Protocol. It will also perform a Denial of Service on windowsupdate.com. This is an attempt to disable the user’s ability to patch their computer against the DCOM RPC vulnerability.

More information is available at: http://www.centralcommand.com/11082003.html

Join the newsletter!

Error: Please check your email address.

More about Microsoft

Show Comments