Microsoft Environment Analysis Essay

AbstractWindows of Vulnerability is defined as the ability to attack something that is at risk. Hackers bet and pride themselves on finding vulnerabilities or creating their own within a system. A few examples of vulnerabilities that will be cover in this paper are CodeRed, Spida, clink, Lovesan, and Sasser. The wrick conjured Code Red was observed on the internet on July 13, 2001. Computers rivulet Microsoft IIS meshwork boniface were attacked with this squirm. Code Red plant louse did not infect the largest amount of computers until July 19, 2001 with 359,000 hosts creation infected. The squirm would broadcast itself in a vulnerability known as a buffer invade. It would do this by exploitation a long string of the repeating of the letter N to overflow a buffer. Spida worm infects via Microsoft SQL triggers with administrator accounts that have no passwords defined. Microsoft recommends the sa account be set upon installation but many servers are not properly secured after installation. The main persona of the Spida worm is to export an infected servers Sam password database. SQL clink worm caused a denial of redevelopment on profits host and slowed cumulus general internet traffic.On January 25, 2003 it revolve rapidly and infected 75,000 victims in cristal minutes. The worm exploited the buffer overflow and would generate random IP addresses, localise itself out to those addresses. If one of those addresses happens to belong to a host that is running an unpatched copy of Microsoft SQL waiter Resolution Service, the host becomes infected and sprays the Internet with more copies of the worm. Lovesan worm A.K.A. MSBlast or blaster Worm was a worm that facing pages to computers running Microsoft operating systems Windows XP and Windows 2000. The worm bedcover using a buffer overflow.This allowed the worm to spreads without the users opening attachments simply by spamming itself. The worm would display a two messages see I just want t o narrate LOVE YOU SANSoo much. This message gave the worm the name Lovesan the second message read truncheon Gates why do you distinguish this possible ? Stop making coin and fix your software. Sasser worm affects computers running Microsoft operating systems Windows XP and Windows 2000. Sasser spreads through a endangered network port. It is particularly easy to spread without user intervention but is in like manner easily stopped by a properly configured firewall. The worm certain the name Sasser because it would spread through a buffer overflow in the fate known as LSASS(Local Security authorization Subsystem).ReferencesWikipedia, the bighearted encyclopedia. Code Red (computer worm) Wikipedia, the dissolve encyclopedia. Retrieved from http//en.wikipedia.org/wiki/Code_Red_(computer_worm) IBM X-Force Ahead of the Threat Resources. advise118 . Retrieved from http//www.iss.net/threats/advise118.html Wikipedia, the free encyclopedia. SQL Slammer Wikipedia, the free encyclopedia. Retrieved from http//en.wikipedia.org/wiki/SQL_Slammer Wikipedia, the free encyclopedia. Blaster (computer worm) Wikipedia, the free encyclopedia. Retrieved from http//en.wikipedia.org/wiki/Blaster_(computer_worm) Wikipedia, the free encyclopedia. Sasser (computer worm) Wikipedia, the free encyclopedia. Retrieved from http//en.wikipedia.org/wiki/Sasser_(computer_worm)