|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Full-Disclosure] Re: New LSASS-based worm finally here (Sasser)
From: Jason (security
brvenik.com)
Date: Mon May 03 2004 - 21:42:38 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Javier Fernandez-Sanguino wrote:
[...]
>
> [1] Approaching the record of worms in other OS, which, I believe, is
> held by Scalper (10 days from patch to worm). But hey, they could browse
> the source changes for that one.
>
It did not attack an OS directly but I believe the witty worm [1] holds
the record to date. A 1 day window from advisory to release, it attacked
and destroyed a security component that was supposed to protect against
these issues...
[1] - http://www.caida.org/analysis/security/witty/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]