Full Disclosure mailing list archives

Re: Red Bull Worm

From: Brian Eckman <eckman () umn edu>
Date: Thu, 07 Aug 2003 11:47:48 -0500

Joel R. Helgeson wrote:

Lets see, the last big worm to exploit windows was named Code Red after the
Mountain Dew Code Red was brought to market.  Being that this worm is much
more effective than Code Red ever was, I say worm should be named Red Bull
as it is sure to exhibit much more energy than the Code Red worm.

Pardon me if I am just plain ignorant, but where is this worm, and howon earth is it "more effective than Code Red ever was" already if nobodyis talking about it? The only evidence of a worm I have seen is oneperson showing comments supposedly from source code of some programcalling itself a worm...


Brian

--
Brian Eckman
Security Analyst
OIT Security and Assurance
University of Minnesota
612-626-7737

"There are 10 types of people in this world. Those who
understand binary and those who don't."

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

DCOM Worm/scanner/autorooter !!! Stephen (Aug 07)
- Red Bull Worm Joel R. Helgeson (Aug 07)
  - Re: Red Bull Worm Berend-Jan Wever (Aug 07)
    - Re: Red Bull Worm CHeeKY (Aug 07)
    - RE: Red Bull Worm gml (Aug 07)
  - Re: Red Bull Worm Brian Eckman (Aug 07)
    - Re: Red Bull Worm Valdis . Kletnieks (Aug 07)
    - Re: Red Bull Worm Joel R. Helgeson (Aug 07)
    - Re: Red Bull Worm Brian Eckman (Aug 07)
  - RE: Red Bull Worm Adam (Aug 07)
    - Re: Red Bull Worm KF (Aug 07)
- Re: DCOM Worm/scanner/autorooter !!! Joey (Aug 07)
  - RE: DCOM Worm/scanner/autorooter !!! Warren Rees (Aug 08)
- <Possible follow-ups>
- Re: DCOM Worm/scanner/autorooter !!! roman . kunz (Aug 08)
  - Re: DCOM Worm/scanner/autorooter !!! Joey (Aug 10)
    - Re: DCOM Worm/scanner/autorooter !!! Stephen (Aug 10)