W32.Esbot.C is a worm that spreads by exploiting the Microsoft Windows Plug and Play Buffer Overflow Vulnerability (described in Microsoft Security Bulletin MS05-039
), allowing a remote attacker access to the compromised computer.
- While computers running Windows 95/98/Me/NT4/XP operating systems cannot be infected remotely, it is possible they could be infected if the threat is executed locally (although this is an unlikely occurrence). Vulnerable Windows 2000 computers could then be infected by the compromised computer.
- Definitions dated prior to August 23, 2005 detect this threat as W32.IRCBot.Gen.
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.