Discovered: April 16, 2004
Updated: February 13, 2007 12:21:31 PM
Type: Trojan Horse, Worm
Systems Affected: Windows 2000, Windows XP
Bloodhound.Exploit.8 is a heuristic detection for the exploits that use the LSASS Windows vulnerability, described in
Microsoft Security Bulletin MS04-011.
The vulnerability affects unpatched versions of Windows 2000 and Windows XP, and is considered Critical.
Note: We suggest that you submit any files to Symantec Security Response that are detected as Bloodhound.Exploit.8. For instructions on how to do this using Scan and Deliver, read the document, "
How to submit a file to Symantec Security Response using Scan and Deliver."
The discovery of the LSASS is credited to eEye. For more information, see
http://www.eeye.com/html/Research/Advisories/AD20040413C.htmlProtection
-
Initial Rapid Release version April 16, 2004
-
Latest Rapid Release version April 16, 2004
-
Initial Daily Certified version April 16, 2004
-
Latest Daily Certified version April 16, 2004
-
Initial Weekly Certified release date April 17, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
Distribution
Writeup By: Frederic Perriot
