- Discovered:
- July 15, 2005
- Updated:
- February 13, 2007 12:42:16 PM
- Also Known As:
- CME-875, Win32.Reatle.A [Computer Assoc, Lebreat [F-Secure], Net-Worm.Win32.Lebreat.gen [Ka, W32/Reatle.gen@MM [McAfee], W32/Lebreat-A [Sophos], WORM_REATLE.A [Trend Micro]
- Type:
- Worm
- Systems Affected:
- Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
W32.Reatle@mm is a mass-mailing worm that opens a back door and attempts to propagate by exploiting the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (as described in Microsoft Security Bulletin MS04-011) on TCP port 445.
Antivirus Protection Dates
- Initial Rapid Release version July 15, 2005
- Latest Rapid Release version September 28, 2010 revision 054
- Initial Daily Certified version July 15, 2005
- Latest Daily Certified version September 28, 2010 revision 036
- Initial Weekly Certified release date July 15, 2005
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 - 49
- Number of Sites: 3 - 9
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Moderate
Damage
- Damage Level: Medium
Distribution
- Distribution Level: High
Writeup By: Candid Wueest



