1. /
  2. Security Response/
  3. Hacktool.Etherflood

Hacktool.Etherflood

Risk Level 1: Very Low

Discovered:
May 2, 2006
Updated:
May 3, 2006 1:35:31 PM
Systems Affected:
Windows XP, Windows 2000
Hacktool.Etherflood is a hacktool program that floods a switched network with Ethernet frames using random hardware addresses. The effect on some switches is that they start sending all traffic out on all ports thereby making it possible to sniff all traffic on the network.

Antivirus Protection Dates

  • Initial Rapid Release version May 2, 2006
  • Latest Rapid Release version July 7, 2011 revision 001
  • Initial Daily Certified version May 2, 2006
  • Latest Daily Certified version July 7, 2011 revision 003
  • Initial Weekly Certified release date May 3, 2006
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Low
  • Payload: Floods a switched network with Ethernet frames

Distribution

  • Distribution Level: Low
Writeup By: Shay Roe

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver