On Tuesday 12 August 2003 18:54, Carlos Baez Ortíz wrote:
> Can someone please explain what is the relation between the blaster worm
> and the remote shutdown from the infected system?
The RPC service fails due to the initial exploit. Windows is set to reboot
by default on RPC failure because the system is so dependent on it, but you
can change this behavior in the service properties dialog.
--
Jonathan Rickman
X Corps Security
http://www.xcorps.net
------------------------------------------------------------------------
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
> Can someone please explain what is the relation between the blaster worm
> and the remote shutdown from the infected system?
The RPC service fails due to the initial exploit. Windows is set to reboot
by default on RPC failure because the system is so dependent on it, but you
can change this behavior in the service properties dialog.
--
Jonathan Rickman
X Corps Security
http://www.xcorps.net
------------------------------------------------------------------------
---
Your network firewall and IDS products do not prevent Web application
attacks - the most common form of online exploitation- resulting in Web
defacement, data theft, sabotage and fraud.
KaVaDo is the only company that provides a complete suite of Web
application security products.
Download a FREE whitepaper on "Security Policy Automation for Web
Applications":http://www.securityfocus.com/Kavado-focus-ms
------------------------------------------------------------------------
---
[ reply ]