Bolgimo

This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these template messages) This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. Find sources: "Bolgimo" – news · newspapers · books · scholar · JSTOR (May 2014) (Learn how and when to remove this template message) The topic of this article may not meet Wikipedia's general notability guideline. Please help to demonstrate the notability of the topic by citing reliable secondary sources that are independent of the topic and provide significant coverage of it beyond a mere trivial mention. If notability cannot be shown, the article is likely to be merged, redirected, or deleted. Find sources: "Bolgimo" – news · newspapers · books · scholar · JSTOR (May 2014) (Learn how and when to remove this template message) (Learn how and when to remove this template message)

Bolgimo is a Win32 computer worm, a self-replicating computer program similar to a computer virus, which propagates by attempting to exploit unpatched Windows computers vulnerable to the DCOM RPC Interface Buffer Overrun Vulnerability^[1] using TCP port 445 on a network. The worm was discovered on November 10, 2003, and targets Windows NT, 2000 and XP Operating Systems.

If a target computer is successfully infected, the worm will call the user's attention to the fact that the machine is vulnerable, download the patch to the user's desktop and run the patch installer. The worm also attempts to shut down processes linked to other malware known to exploit the same vulnerability, like MSBlaster.^[2]

Aliases[edit]

Worm.Win32.Bolgi (Kaspersky)

W32/Bolgimo.worm (McAfee)

W32.Bogi.Worm (Symantec)

Worm/Bolgi.A (Avira)

W32/Bolgi-A (Sophos)

Worm:Win32/Bolgimo.A (Microsoft)

References[edit]

This malware-related article is a stub. You can help Wikipedia by expanding it.

• v
• t
• e