Yes there is a worm spread which infects NT/2K/XP/2003 machines which
someone has been stupid enough to connect directly to the internet
without keeping up with security updates.

It is nowhere near the scale of code red at the moment. It's scanning
method seems to be unsophisdicated.

http://securityresponse.symantec.com...ster.worm.html

From a blueyonder-only newsgroup


There's no "then you need", you _should_ have _already_ patched your box
for this exploit (it's been known for over a week now) and it doesn;t
just affect XP.. affects NT, 2K, XP, 2003 too, all SPs.

For some info on the worm:


<URL:http://forum.digiserv.net/viewtopic.php?t=179>


For M$ info / patch:
<URL:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-026.asp>
(may wrap)