He who has begun has half done.
Dare to be wise; begin.
Horace (Quintus Horatius Flaccus) (65 BC- 8 BC); Latin poet.

- Weekly summary -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)

Madrid, May 8, 2004 - This week, Oxygen3 24h-365d has focused on the news
summarized below, which can be accessed at:
http://www.pandasoftware.com/about/press/oxygen3/oxygen.asp

- The new Sasser.D worm aggravates the epidemic that is sweeping across the
Internet (05/03/04).
PandaLabs has detected the appearance of a new variant of the Sasser worm
(Sasser.D) -very similar to its predecessors- which, according to the data
gathered by Panda Software's International Alerts Network, has started to
cause incidents. Far from receding, the global epidemic unleashed by Sasser
and its variants is expanding progressively. As expected, the number of
companies whose network has been affected by these dangerous worms is
increasing.

- Remote command execution through AppleFileServer (05/04/04).
A vulnerability has been reported that affects AppleFileServer and which
could allow an attacker to obtain administrative privileges and run
commands. It has been confirmed that this flaw can be exploited in multiple
versions of Mac OS X. In order to prevent this, Apple has released the
security update APPLE-SA-004-05-03.

- Top Ten viruses most frequently detected by Panda ActiveScan in April
(05/05/04).
In April, Netsky.P was responsible for 15.29 percent of infections. Second
in the ranking of the viruses most frequently detected by Panda ActiveScan
in April is the D variant of Netsky (8 percent). This worm is followed in
turn by the Downloader.L Trojan (6.95 percent), Netsky.B (6.29 percent),
Nachi.B (5.91 percent) and Netsky.C (3.72 percent). The last four positions
were occupied by the Trojan Revop.F (3.52 percent), Baglepwd.zip (2.58
percent), Parite.B (2.41 percent) and Netsky.Q (2.35 percent).

- Critical vulnerability with QuickTime Player (05/06/04).
A vulnerability has been detected in the Apple QuickTime multimedia player
which could potentially be exploited by an attacker to remotely execute
arbitrary code. Given the seriousness of the situation, users are advised to
update to version 6.5.1, in which the security hole has been fixed.

- Free Panda Software tools for removing the Sasser worms (05/07/04).
To mitigate the effects of the epidemic caused by the variants of Sasser (A,
B, C & D), Panda Software has made its free PQRemove tools available to all
users. These applications not only disinfect computers, but also restore
system settings altered by the worm.

- If your network has been attacked by any of the variants of Sasser, Panda
offers the specific PQRemove tool for networks, along with instructions, at:
http://www.pandasoftware.com/support

- If you have a standalone (individual) computer that has been attacked by a
variant of the Sasser worm, you can download the PQRemove tool you need
from: http://www.pandasoftware.com/download/utilities/

NOTE: The addresses above may not show up on your screen as single lines.
This would prevent you from using the links to access the web pages. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.