-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Microsoft RPC exploit could be a packaged deal
,----[ Quote ]
| While Microsoft has labeled Thursday's emergency patch MS08-067 as "critical"
| and provided a rare out-of-cycle fix because its exploit could easily be used
| as worm on a compromised network, one security researcher doesn't think it
| will happen that way.
|
| "It's likely we're going to see this packaged with some other attack." said
| Ben Greenbaum, senior research manager at Symantec. "A Web-based attack, for
| example. We're looking out for are exploits of this being bundled with
| client-side exploits or Trojans so that the worm can get past corporate
| firewalls and get behind that firewall into the internal network."
`----
http://news.cnet.com/8301-1009_3-10074269-83.html?part=rss&subj=news&tag=2547-1_3-0-20
It's already under attack.
Earlier:
Trojan attacks Microsoft's emergency patch vuln
,----[ Quote ]
| A day after Microsoft released an emergency patch for a critical flaw that
| could allow self-replicating attacks, researchers have identified a nasty
| trojan that attempts to exploit the vulnerability.
`----
http://www.theregister.co.uk/2008/10/24/trojan_exploits_wormable_microsoft_flaw/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkkC5UIACgkQU4xAY3RXLo5ZCgCfRlvxCdSw2he50k4R0fP+Jw64
YQcAn0TbJolHl79BsdW1Wv/E2ib4mTLr
=4LXH
-----END PGP SIGNATURE-----
|
|
