“A distributed denial of service (DDoS) tool of the sort that
made headlines this month by enabling intruders to interrupt
service at high-profile Internet monuments like Yahoo, Excite and
eBay has just been ported to the ubiquitous Win32 kernel, according
to anti-virus outfit Trend Micro.”
“Not only can Troj_Trin00 exploit millions more boxes than
its forebears could do, it can reach them more easily as well.
The tool can be delivered as a trojan joined to seemingly innocuous
files; it can be propagated as an e-mail attachment; or it can be
installed and executed in the background by a malicious Active-X
script.”
“Previous versions had to be uploaded manually to a UNIX server
or Linux box via an unprotected port. Port #111 on Solaris systems
is a particular favourite, having a known and easily-exploitable
weakness. But others can be found and exploited by performing a
port scan.”