W32.Explet.A@mm is a mass-mailing worm that also spreads through network shares and the Kazaa file-sharing network. The worm exploits the Microsoft Windows LSASS Buffer Overrun Vulnerability (described in Microsoft Security Bulletin MS04-011
) and the DCOM RPC vulnerability (described in Microsoft Security Bulletin MS03-026
) through TCP ports 135 and 445. It may also lower security settings and download remote files.
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.