The United States Computer Emergency Readiness Team (US-CERT) issued a warning on regarding the Downadup worm that has infected over 10 million computers so far. They said Microsoft's original proposed fix does not address all versions of the Windows operating system.
The Downadup worm creates an "autorun.inf" file on every USB drive it finds on a Windows system. The AutoRun feature in Windows will automatically execute the instructions contained within, allowing CDs, USB and other removable media forms the ability to spontaneously start install programs, or programs specific to the media form.
Microsoft originally advised a registry fix which would disable the AutoRun feature. However, US-CERT said that fix does not work on Windows 2000, XP and 2003 Server. The subsequent KB953252 support document describes how to manually install the fix for 2000, XP and Server 2003 users.
US-CERT warned that since Microsoft's solution only works on those systems which have the KB953252 patch applied, then only those systems which would have automatically received it would be rendered immune to this form of Downadup's attack.
Full Story
No comments:
Post a Comment