Hi malware fighters,

A new worm could also be “dubbed” a bot, for the P2P software like qualities, which makes it hard to detect by IDS monitoring.
Read here: http://www.theregister.co.uk/2006/05/04/nugache_p2p_botnet/

polonus

The worm spreads to unpatched computers by exploiting the following vulnerabilities:

The Microsoft ASN.1 Library Multiple Stack-Based Buffer Overflow Vulnerabilities (as described in Microsoft Security Bulletin MS04-007)
The Microsoft Windows LSASS Buffer Overrun Vulnerabilities (as described in Microsoft Security Bulletin MS04-011)
Another reason to keep your computer updated!