Se alguem instalou o EartStation 5 P2P application... que tal fazer um uninstall do bicho e rápido:
+info: http://lists.netsys.com/pipermail/full-disclosure/2003-October/011339.html
EartStation 5 P2P application contains malicious code:
There exists malicious code in ES5.exe's "Search Service" packet handler.
By sending packet 0Ch, sub-function 07h to the "Search Service"'s IPort,
a remote attacker could delete any file the user is sharing. If the remote
attacker uses "filenames" with a relative path in them (eg.
"..\..\..\WINDOWS\NOTEPAD.EXE"), the remote attacker could also delete
files in eg. the windows and windows\system32 folders, or any other folder
on the same partition as any of the shared folders. Since most users using
Windows are in the Administrators group, a remote attacker could also
delete the C:\BOOT.INI file which is a required boot file used by ntldr.
IMPORTANT: This is not a bug! They intentionally added this code to ES5.
+info: http://lists.netsys.com/pipermail/full-disclosure/2003-October/011339.html