A man-made variant
of the Code Red Worm*
, Code Red II
) was designed to exploit
the delivery mechanism
developed by Code Red. Distinct differences between the two:
One of the major deficiencies of CRII is its weakness in attacking through VPN
s. Once all 300 threads exist, they will continue attacking "nearby" addresses, even if the infected machine is now on a different address (such as private IP
Many people feel that one can trivially defend oneself, but it should be noted that any attack against an infected machine that fails to actively remove the backdoors is naught but a temporary solution.
* Note that CRv1 & CRv2 are names for versions of the original Worm. CRII is a variant.