MySQL worm hits Windows systems | CNET News.com

MySQL worm hits Windows systems | CNET News.com

MySQL worm hits Windows systems
By Robert Lemos
Story last modified Thu Jan 27 12:54:00 PST 2005

A worm that takes advantage of administrators' poor password choices has started spreading among database systems.
The malicious program, known as the 'MySQL bot' or by the name of its executable code, SpoolCLL, infects computers running the Microsoft Windows operating system and open-source database known as MySQL, the Internet Storm Center said in an advisory published Thursday.
Early indications suggest that more than 8,000 computers may be infected so far, said the group, which monitors network threats.
The worm gets initial access to a database machine by guessing the password of the system administrator, using common passwords. It then uses a flaw in MySQL to run another type of program, known as bot software, which then takes full control of the system.

Full Story Here