What You Should Know About the Blaster Worm
reprinted with permission from Microsoft

August 11, At 11:34 A.M. Pacific Time today, Microsoft began investigating a worm reported by Microsoft Product Support Services (PSS).

Why We Are Issuing This Alert

A new worm known as W32.Blaster.Worm (also known as MBlaster, W32/Lovsan.worm, MSBlast, W32.blaster.worm, Win32.posa.worm, Win32.poza.worm) has been identified that is seeking to exploit the vulnerability patched with Microsoft Security Bulletin MS03 026. Blaster is designed to launch a denial of service attack against Microsoft's Windows
Update Web site.

Products Affected

The following products are affected:

  • Microsoft® Windows NT® 4.0
  • Microsoft Windows® 2000
  • Microsoft Windows XP
  • Microsoft Windows Server(tm) 2003

Prevention

If you are using Windows NT 4.0, Windows 2000, Windows XP, or Windows Server 2003, you should follow these steps to help protect your system:

1. Make sure you have a firewall.

If you have Windows XP or Windows Server 2003, enable the Internet Connection Firewall (ICF)

<http://www.microsoft.com/windowsxp/home/using/productdoc/en/default.asp?
url=/windowsxp/home/using/productdoc/en/hnw_enable_firewall.asp>

If you have Windows 2000 or Windows NT, visit Windows Catalog for a
list of Internet firewall software

<http://www.microsoft.com/windows/catalog/default.aspx?subID=22&xslt=search&
qu=anti-virus&scope=4>
.

2. Get Updates

Get the latest critical updates for the version of Windows that you are using <http://windowsupdate.microsoft.com/> and make sure you get the update addressed in Security Bulletin MS03-026.

3. Make sure you install and use antivirus software.

If you have antivirus software installed, get the latest virus definitions from your antivirus vendor's Web site.

If you do not have antivirus software installed, visit Windows Catalog

<http://www.microsoft.com/windows/catalog/default.aspx?subID=22&xslt=search&
qu=anti-virus&scope=4
> for a list of antivirus software vendors.

What to Do If You Think Your Computer Has Been Infected

If you think your computer has been infected with the Blaster worm, please contact Microsoft Product Support Services or your antivirus vendor for assistance removing it.

For Microsoft Product Support Services within the United States and Canada, call toll-free (866) PCSAFETY (727-2338).

For Microsoft Product Support Services outside the United States and Canada, visit the Product Support Services
<http://support.microsoft.com/common/international.aspx> Web page.

Additional Resources

Get more technical details about Microsoft Security Bulletin MS03-026
<http://www.microsoft.com/technet/treeview/?url=/technet/security/bulletin/MS03-026.asp>

Get more info on protecting your computer from viruses
<http://www.microsoft.com/security/articles/steps_default.asp>

###

Return to expo1000.com/parking home