Panda Software Offers to Every User the Free Tool to Disinfect and Remove Sasser.A
Posted on 03.05.2004
The new Network worm Sasser.A, discovered just few hours ago, is spreading and infecting many users. It has become one of the most detected codes by the On Line antivirus Panda ActiveScan. Everything indicates that it will be epidemic like last August Blaster virus. The Panda Software Technical Support Network, as Panda Labs, has received many infections reports caused by this new virus. So, Panda Software his offering to all the users the free tool Pqremove to detect and disinfect Sasser, available here.

Panda Software warns that the users can detect and disinfect the new worm with an updated antivirus, but it's also needed to install the patch provided by Microsoft to be sure the virus do not infects again the computer. The vulnerability used by Sasser.A was published by Microsoft last week in the bulletin MS04-011 with the correspondent solution. Panda Software customers already have the updates to detect and disinfect this new worm.

In addition, the users can scan their computers on line for free with the ActiveScan solution, available in the company web page: http://www.pandasoftware.com More Information about this threat or other ones, is available in the virus encyclopedia, at http://www.pandasoftware.com/virus_info/encyclopedia/

Sasser.A behavior is similar to Blaster. The worm scans random IP addresses until it finds systems with this vulnerability. Once found, it copies itself in Windows directory with the name AVSERVE.EXE and creates the following registry entry, to ensure it is launched when the system is booted:

HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionRun

avserve.exe = %windir%avserve.exe

In addition, the vulnerability uses a buffer overflow to make the LSASS.EXE application crash. Because of this, the system can fail.





Spotlight

Review: Bulletproof SSL and TLS

Posted on 12 September 2014.  |  Deploying SSL or TLS in a secure way is a great challenge for system administrators. This book aims to simplify that challenge by offering extensive knowledge and good advice - all in one place.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Mon, Sep 15th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //