Marc Maiffret is the employee of eEye Digital Security who discovered the
vulnerability that is exploited by the code red virus. eEye informed
microsoft about the vulnerability and waited until ms coded a patch and
published it, before revealing the vulnerability publicly. He is quoted in
an article in the Aug. 6 issue of Informationweek magazine, "Especially for
microsoft patches, nt administrators are more afraid of installing the
security patch than of the actual vulnerability, microsoft has such a bad
track record of publishing patches that break things."
I guess this would explain why the virus has proliferated to such an extent.
Smitty
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 18:49:27 EDT