1. /
  2. Security Response/
  3. BackOrifice2K.Trojan

BackOrifice2K.Trojan

Risk Level 1: Very Low

Discovered:
July 11, 1999
Updated:
February 13, 2007 11:58:22 AM
Type:
Trojan Horse

Back Orifice 2000 is a new version of BackOrifice.Trojan. When installed on a Microsoft Windows system, this backdoor trojan horse program allows others to gain full access to the system through a network connection. Similar to the original BackOrifice, it consists of two pieces: a server and a client application. However, now both applications are capable of running under Windows NT. The client application, running on one machine, may be used to monitor and control a second machine running the server application.

The port number through which the client controls the server is configurable. However, as long as the port is blocked by a firewall, this trojan horse will not be able to infiltrate the server. It does not matter whether the TCP or UDP protocol is implemented. There have not been any reports of this program being able to break through a firewall.

Antivirus Protection Dates

  • Initial Rapid Release version July 11, 1999
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version July 11, 1999
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date pending
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Low

Distribution

  • Distribution Level: Low
Writeup By: Raul Elnitiarta

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver