CODE > TYPE > FORM > MOTION > TERRAGE.COM WRM.32 is a worm that propagates by exploiting the Microsoft Windows Typeface Buffer Overrun Vulnerability (BID 8205). The worm connects on TCP port 135 and sends a large amount of data sufficient to overrun the buffer. This results in critical memory being overwritten allowing the remote system to gain a shell on TCP port 4444 with Local System privileges. Format: OTF/TTFRelease Date: 2010Char Count: 162 wrm32