U.S. Eastern Time January 27 (Beijing time on January 28 ), based on safety study firm stated a worm can utilize the administrator account weak password vulnerability in the database system and spread. The malicious code is Early warning shows that there are about 8,000 computer could be infected.
The worm guesses the password for that system administrator first universal access, and then , which uses a flaw in MySQL to run an additional bot program , bot will completely control the pc program. Microsoft stated the incorrect password with relevant functions in the protection actions grow to be a safety risk.
Since the worm impacted Windows methods running database software program ,
Microsoft Office Enterprise 2007, it had the But, Furthermore , MySQL database, Linux as well as other open-source program in the wide selection of applications. This means that Net access will only be a tiny part of the pc of MySQL bot .
Security agency stated computer managed by the bot will try to accessibility the internet Relay Chat server to discover new goals and to upgrade. IRC server analysis exhibits that 8500 hosts are linked , and pointed out that there might be a number of computers are contaminated, though researchers contaminated personal computer statistics as much more conservative. Security analyst , said:
Microsoft Office Enterprise 2007 MySQL worm exploi
Linear Mode
