ZDNet: New Unix worm could be next Code Red
Sep 10, 2001, 23:35 (42 Talkback[s])
(Other stories by Wendy McAuliffe)
"A new Internet worm designed to attack a common flaw
in Unix systems has been confirmed dead, but security experts are
warning that the self-propagating worm could be the next Code Red.
The X.C worm exploits a newly discovered hole in the telnet
service that is run on most Unix systems. Antivirus companies are
concerned that crackers will have learned from the success of the
Code Red worm and its variants, and will be encouraged by the
length of time that it takes system administrators to patch
machines against publicized vulnerabilities.
"This is going to go along the same lines as Code Red, as virus
writers will know that a lot of machines will be vulnerable," said
Mark Read, systems security analyst for computer security company
MIS Corporate Defence Solutions. "This is definitely the way
forward with viruses, as it removes the need for humans to double
click on attachments in order for the worm to spread, and instead
looks for servers that have not been patched."