Security Advisory: Worm:Win32/Zotob.A

This came over my email today. Please take the time to apply necessary patches as a matter of urgency if you are affected: .


"...This alert is to notify you of the revision of Microsoft Security Advisory (899588) Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588).


This Security Advisory has been updated with information about “Worm:Win32/Zotob.A”, which is currently circulating on the Internet.

As part of our Software Security Incident Response Process, our investigation has determined that only a small number of customers have been affected and Microsoft is working directly with them.  We have seen no indication of widespread impact to the internet. 

Our initial investigation has revealed that the worm attacks Windows 2000-based systems. Other versions of Windows, including Windows XP Service Pack 2 and Windows Server 2003, are not impacted by “Zotob.A”.  


Customers can protect against this worm by installing the security updates provided by the Microsoft Security Bulletin MS05-039 immediately. The MS05-039 security bulletin is available at the following Web site. 


The updated Advisory provides a link to this site for more information about the worm:


It also provides a link to this site for more information regarding Microsoft’s guidance:


Please see the Security Advisory for more information.


This Microsoft Security Advisory is located at this location:


Microsoft Security Advisories are located at this location:"


Comments (0)

Skip to main content