Virus Alert Category 3 - Bugbear.B

Devilfrank

Sehr aktiv
W32.Bugbear.B@mm is a variant of W32.Bugbear@mm. W32.Bugbear.B@mm is a mass-mailing worm that also spreads through network shares. The worm is polymorphic and also infects a select list of executable files. The worm has keystroke-logging and backdoor capabilities and also attempts to terminate the processes of various antivirus and firewall programs.

The worm uses the Incorrect MIME Header Can Cause IE to Execute E-mail Attachment vulnerability to cause unpatched systems to auto-execute the worm simply when reading or previewing an infected message.

Because the worm does not properly handle the network resource types, it may flood shared printer resources, which causes them to print garbage or disrupt their normal functionality.

Due to the number of submissions received from customers, Symantec Security Response is upgrading this threat to a Category 3 from a Category 2 threat.

Update: 06.06.03
Symantec erhöht die Warnstufe noch einmal auf System alert category 4 und bringt kurz hintereinander zwei Updates der Virensignaturen.

security_alert_on.jpg



Also Known As: Win32.Bugbear.B [CA], W32/Bugbear.b@MM [McAfee]
Type: Virus, Worm
Infection Length: 72,192
Systems Affected: Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me

More info:
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]
 
Zurück
Oben