The SQL slammer worm was the first observed example of a Warhol worm. The mechanism of SQL Slammer's spread used a pseudo-random number generator seeded from a system variable to determine which IP addresses to attack next. In spite of deficiencies in the implementation of the PRNG, the randomized attack was highly effective.
According to a CAIDA[?]-coordinated analysis of the SQL Slammer outbreak, its growth followed an exponential curve with a doubling time of 8.5 seconds in the early phases of the attack, which was only slowed by the collapse of many networks because of the denial of service caused by SQL Slammer's traffic. 90% of all vulnerable machines were infected within 10 minutes, showing that the original estimate for infection speed was roughly correct.
Search Encyclopedia
|
Featured Article
|