Originally Posted By: mmazzitello
This post was automatically imported from our archived forum.
UPDATED: New variants of the MS Blast worm have been detected in the wild.
A new worm has also been discovered that exploits the MSRPC DCOM
vulnerability that is not related to the MS Blast variants. This new worm
has been labeled "Nachi", and also labeled incorrectly as a LovSan.D. The
Nachi worm has improved scanning logic, feature improvements, and auto-
patching functionality. It also propagates by an additional exploit vector,
exploiting the WebDAV vulnerability in Microsoft's IIS 5 Web Server.
Thought folks would get a kick out of the name of the new worm