All the latest UK technology news, reviews and analysis
|
|
|
11 Aug 2006
Malware authors have crafted an exploit that attacks a security vulnerability patched by Microsoft as part of last Tuesday's security update.
The attack uses a vulnerability that Microsoft described in security bulletin MS06-040. It describes a buffer overflow vulnerability in the Windows Server component, affecting Windows 2000, Windows XP and Windows Server 2003.
The exploit only works on systems running Windows 2000 or Windows XP without any service packs. Most Window XP systems run service pack 2.
Attackers can contact the affected component through TCP ports 139 and 445. Both ports are used for NetBIOS sessions including Windows File and Printer sharing.
The exploit prompted the US Department of Homeland Security to issue a press release urging users to apply Tuesday's patch.
Few security experts were surprised by the speed at which online criminals started exploiting the vulnerability.
Bojan Zdrnja with the SANS Internet Storm Center and a security researcher for the University of Auckland warned that the code will cause more widespread attacks as less sophisticated virus writers start creating copy-cat malware.
"It's just a matter of time when script kiddies will start using this, if they haven't already," said Zdrnja.
"We can expect that this exploit will soon be added to the attack arsenal of bots such as Sdbot and similar. In other words – patch!"
The MS06-040 exploit marks the first attack new following this week's Microsoft patch release.
The patch plugged 23 security vulnerabilities, 11 of which were actively being exploited at the time of the release.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
A leading global provider of critical information to...
Playstations and table football in the kitchen? Standard...
Systems Engineer - 2nd/3rd Line Support - Microsoft OS...
A leading global provider of critical information to...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
IT'S ECHELON - I TRACED IT !
Echelon is perhaps the most powerful intelligence gathering organization in the world. Several credible reports suggest that this global electronic communications surveillance system presents an extreme threat to the privacy of people all over the world. According to these reports, ECHELON attempts to capture staggering volumes of satellite, microwave, cellular and fiber-optic traffic, including communications to and from North America. This vast quantity of voice and data communications are then processed through sophisticated filtering technologies. This massive surveillance system apparently operates with little oversight. Moreover, the agencies that purportedly run ECHELON have provided few details as to the legal guidelines for the project. Because of this, there is no way of knowing if ECHELON is being used illegally to spy on private citizens. I SHOULD OF USED A PROXY TO POST THIS !
Posted by: Privet 12 Aug 2006
Microsoft Patches for Win 2K Pro of 8/9/06
Since I installed the Patches my internet connection (IE 6+)crash very often. Microsoft wants error messages which I send and I wonder if it is only me or a general problem and what Microsoft will do to solve the problem
Posted by: Argentina Clark 11 Aug 2006