WORM_RBOT.FWN |
|
| BugsAlert Home > WORM_RBOT.FWN | |
|
This worm is downloaded from remote sites or dropped by other malware. It can also arrive in a system via removable drives. It propagates by dropping copies of itself in all physical and removable drives. It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed. It opens port 6667 where it listens for remote commands. It connects to Internet Relay Chat (IRC) servers and joins channels. It executes commands from a remote malicious user, effectively compromising the affected system. It takes advantage of the following software vulnerabilities: Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/227164024/default5.asp Learn more about WORM_RBOT.FWN |
|
| Tags: worm rbot.fwn | |
Related Items |
|
|
CVE-2008-2793 (ClipShare)
|
|
|
CVE-2008-2652 (smeweb)
|
|
|
h2desk Support System Security Bypass
|
|
|
CVE-2008-4320 (opennms)
|
|
|
December Malware Roundup
|
|
|
LANDesk Multiple Products Buffer Overflow Vulnerability
|
|
|
CVE-2008-1537 (PowerBook)
|
|
