Microsoft has been made aware of a worm identified as “W32.Sasser.worm”
and it is currently circulating on the Internet. The worm exploits the
Local Security Authority Subsystem Service (LSASS) vulnerability fixed in
Microsoft Security Update MS04-011 on April 13, 2004.
Microsoft encourages customers to protect themselves against this worm by
installing Microsoft Security Bulletin MS04-011
<www.microsoft.com/technet/security/bulletin/ms04-011.mspx> immediately.
Customers can also view additional information on W32.SASSER at
http://www.microsoft.com/security/incident/sasser.asp
Last week you were alerted to the presence of malicious code that sought to
exploit vulnerabilities addressed as part of our April 13th security
updates. Microsoft encouraged customers to apply Microsoft Security
Bulletin MS04-011 and still believes this is the best action.
Mohamed Mahfouz
MEA Developer Support Center
ITworx on behalf of Microsoft EMEA GTSC