Vulnerability Development mailing list archives

multi-OS infections (was Re: A code red that could bring down the net?

From: "Meritt James" <meritt_james () bah com>
Date: Mon, 23 Jul 2001 13:04:05 -0400

I am only aware of two non-OS specific infections.  One operates at the
hardware level and really cares very little, if at all, for what OS is
on it (that one is sorta new.  I was suprised) and the other infected
both Unix and  VM systems somewhat like you described.

I would appreciate hearing of others!

V/R

Jim

Jason Lewis wrote:

[snip]

How about this instead?  A worm that is not only windows, but also unix
based.  It carries payload for each OS.  It works similar to CodeRed and
replicates itself.  It also installs a zombie client and creates backdoors.
Imagine a worm that wraps all the viruses in the 16 months into one.  What
if it actively searched out victims while also using Outlook to propagate
itself.


[snip]

-- 
James W. Meritt, CISSP, CISA
Booz, Allen & Hamilton
phone: (410) 684-6566

Current thread:

RE: Update to "Code Red" Worm. Its a date bomb, not time., (continued)
- RE: Update to "Code Red" Worm. Its a date bomb, not time. c0ncept (Jul 19)
  - Re: Update to "Code Red" Worm. Its a date bomb, not time. Ryan Permeh (Jul 19)
  - A code red that could bring down the net? josh abulamhammedramashi (Jul 22)
    - RE: A code red that could bring down the net? Jason Lewis (Jul 23)
    - Win32.Sircam.Worm Alert..... EPiC (Jul 23)
    - Re: Win32.Sircam.Worm Alert..... H D Moore (Jul 24)
    - Re: Win32.Sircam.Worm Alert..... Martin Lindquist (Jul 24)
    - Re: Win32.Sircam.Worm Alert..... horape (Jul 25)
    - Re: Win32.Sircam.Worm Alert..... Pete Sherwood (Jul 25)
    - Re: Win32.Sircam.Worm Alert..... Miguel Angel Rodriguez Jodar (Jul 25)
    - multi-OS infections (was Re: A code red that could bring down the net? Meritt James (Jul 23)
    - Re: multi-OS infections (Multi OS shellcode) Riley Hassell (Jul 24)
    - Re: multi-OS infections (Multi OS shellcode) Damir Rajnovic (Jul 25)
    - Re: multi-OS infections (Multi OS shellcode) corecode (Jul 25)
    - RE: A code red that could bring down the net? Dom De Vitto (Jul 23)
    - Re: A code red that could bring down the net? Birger Toedtmann (Jul 23)
    - Re: A code red that could bring down the net? Michael Tench (Jul 23)
    - Re: A code red that could bring down the net? Felix Harris (Jul 24)
    - Re: A code red that could bring down the net? David R. Conrad (Jul 25)
    - Re: A code red that could bring down the net? Lynn Crumbling (Jul 25)
    - Re: A code red that could bring down the net? Sven van ´t Veer (Jul 26)

(Thread continues...)