Reliant Energy Communications

	Corporate Home \| Communications Home \| Products \| About Us \| User Support \| Contact Us

Home > Code Red Worm Alert

Code Red Worm Alert

Staring July 13, 2001, at least two variants of the self-propagating malicious code "Code Red" have been attacking hosts on the Internet. Different organizations that have analyzed "Code Red" have reached different conclusions about the behavior of infected machines when their system clocks roll over to the next month. Reports indicate that there are a number of systems with their clocks incorrectly set. Industry experts believe the worm will begin propagating again on August 1, 2001 at 8 p.m. Eastern time.

How to Patch Your System:

If your machine is infected:
To rid your machine of the current worm, reboot your computer.
** It is important to note, that this will not resolve the problem and chances of being re-infected are high.

To protect your system from re-infection:
Install Microsoft's patch for the Code Red vulnerability problem

- Windows NT version 4.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=30833

- Windows 2000 Professional, Server and Advanced Server:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=30800

-    Step-by-step instructions for these actions are posted at
     http://www.microsoft.com/technet/treeview/default.asp?/technet/itsolutions/security/
     topics/codeptch.asp

Microsoft's description of the patch and its installation, and the vulnerability it addresses is posted at:

http://www.microsoft.com/technet/treeview/default.asp?/technet/security/bulletin/MS01-033.asp

Additional Information

The following sites contain additional information regarding the worm and patch information.

CERT Advisory on the Code Red Worm:
http://www.cert.org/advisories/CA-2001-23.html

Microsoft's brief on the Code Red Worm:
http://www.microsoft.com/TechNet/itsolutions/security/topics/codered.asp