[funsec] Rinbot Brings Back Old Times to County Offices
Richard M. Smith
rms at computerbytesman.com
Fri Mar 9 12:20:00 CST 2007
Someone isn't keeping up with their security patches:
The Rinbot worm then attempts to spread by exploiting the following
<http://www.securityfocus.com/bid/18107> Symantec Client Security and
Symantec AntiVirus Elevation of Privilege (BID 18107)
<http://www.securityfocus.com/bid/19409> Microsoft Windows Server Service
Remote Buffer Overflow Vulnerability (BID 19409)
<http://www.securityfocus.com/bid/5411> Microsoft SQL Server User
Authentication Remote Buffer Overflow Vulnerability (BID 5411)
From: funsec-bounces at linuxbox.org [mailto:funsec-bounces at linuxbox.org] On
Behalf Of Fergie
Sent: Friday, March 09, 2007 1:12 PM
To: funsec at linuxbox.org
Subject: [funsec] Rinbot Brings Back Old Times to County Offices
-----BEGIN PGP SIGNED MESSAGE-----
Via The Washington Post.
Typewriters were dusted off, hand-held radios were tested, and Anne Arundel
County employees reported having to walk between offices rather than sending
e-mails yesterday after a virus led to the shutdown of more than 2,500
The fast-spreading virus infected as many as 200 county computers Wednesday,
and technicians shut down the entire network for Anne Arundel offices for
more than 24 hours.
The disruption left hundreds of employees without access to databases, the
Internet and printers, but 911 emergency services and financial transactions
such as bill payments were not affected, officials said.
By the end of the day, parts of the network were up and running. But during
the two days of network shutdown, some county employees said they were
forced to resort to tools and methods abandoned long ago in the name of
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.5.3 (Build 5003)
-----END PGP SIGNATURE-----
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet fergdawg(at)netzero.net ferg's
tech blog: http://fergdawg.blogspot.com/
Fun and Misc security discussion for OT posts.
Note: funsec is a public and open mailing list.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the funsec