1. Symantec/
  2. Security Response/
  3. W32.Aizu


Risk Level 1: Very Low

September 10, 2004
February 13, 2007 12:27:23 PM
Also Known As:
Worm.Win32.Zusha.a [Kaspersky], Zusha [F-Secure]
Systems Affected:
CVE References:

W32.Aizu is a worm that attempts to exploit the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (described in Microsoft Security Bulletin MS04-011) using TCP port 445. This worm propagates by scanning randomly selected IP addresses for vulnerable systems.

Antivirus Protection Dates

  • Initial Rapid Release version September 11, 2004
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version September 11, 2004
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date September 12, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Kevin Ha

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube