Panda Software’s Virus Laboratory has detected the appearance of the new variant E of the Blaster worm. Like its predecessors, this malicious code exploits the RPC DCOM vulnerability recently discovered in some versions of Windows. By exploiting this flaw, Blaster.E can get into computers directly from the Internet through port 135. Blaster.E is very similar to previous variants, which vary only in the name of the file created on the affected computer, which in this case is MSLAUGH.EXE. Blaster.E is programmed to carry out denial of service attacks (DoS) on the website kimble.org when the system date is between August 16 and December 31, 2003. This website points to the IP address 127.0.0.1 and as a result, infected computers will end up attacking themselves. Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.