|
UK and International
Business Portal
|
|
|
|
|
||||||
|
||||||||
|
Platinax Internet >> Platinax Internet News
« BBA: 5 year low on mortgage lending | Main | Cisco triple router vulnerabilities in IOS » January 30, 2005MySQL worm goes on rampage - is shut off at sourceA worm that exploited Windows installations of MySQL wraeked havoc yesterday as it spread rapidly across the internet. Known as the MySpooler worm, it attempts to force its way in with a database of potential passwords, and once in it uses the the MySQL UDF Dynamic Library exploit to upload malicious code from an IRC channel - in this instance, the Wootbot trojan). The MySpooler worm was believed to have infected as many as 4,500 machines per hour at its peak, and specifically targeted Windows machines running MySQL 4.0.21 or later, because these have elevated privileges over Unix installs which otherwise shield critical systems from MySQL operations. However, CNet reports in MySQL worm halted that Symantec reports that the IRC channels were eventually shut down, effectively isolating the worm, but only after thousands of machines were turned into zombies. The exploit involved was apparently reported as far back as July 2004, and code publicly released on the internet in December. Posted by brian_turner at January 30, 2005 01:21 PM | Discuss this in the Business, Marketing & Search forumsTrackback PingsTrackBack URL for this entry: |
SearchNews Archives:
Monthly ArchivesRecent Entries
For comprehensive internet |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
All content © Copyright 2004 Brian Turner. All rights reserved. |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
