[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] RE: Probable new MS DCOM RPC worm for Windows

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: RE: [Full-Disclosure] RE: Probable new MS DCOM RPC worm for Windows
From: "Schmehl, Paul L" <pauls@xxxxxxxxxxxx>
Date: Thu, 25 Sep 2003 11:37:29 -0500

> -----Original Message-----
> From: Cael Abal [mailto:lists@xxxxxxxxxx] 
> Sent: Thursday, September 25, 2003 9:57 AM
> To: full-disclosure@xxxxxxxxxxxxxxxx
> Subject: Re: [Full-Disclosure] RE: Probable new MS DCOM RPC 
> worm for Windows
> 
> Did you use a third-party tool to verify the patches were actually 
> successfully installed on the infected machines, before detecting the 
> infection?
> 
No, I used four.  Microsoft's commandline scanner, eEye's free Retina
tool, ISS's scanner and GFI's Languard scanner.

Paul Schmehl (pauls@xxxxxxxxxxxx)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/ 

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: RE: [Full-Disclosure] SAM Switch - Win2k/XP password-less login
Next by Date: Re: [Full-Disclosure] RE: Probable new MS DCOM RPC worm for Windows
Previous by thread: RE: [Full-Disclosure] RE: Probable new MS DCOM RPC worm for Windows
Next by thread: [Full-Disclosure] RE: Probable new MS DCOM RPC worm for Windows
Index(es):
- Date
- Thread