Trojan horse
Troj_emfsploit.A exhibits behaviour similar to the Enhanced Metafile vulnerability of MS05-053

Trojan could attack Tuesday's Windows flaw

Malware appears days after Microsoft fix

Ken Young

Trend Micro claims to have discovered a Trojan horse that attacks Windows users through an image rendering flaw, just a day after Microsoft provided a fix for the bug.

The security firm said initially that the Trojan, referred to as 'emfsploit.a', crashes 'explorer.exe' on unpatched Windows machines.

Advertisement

But Trend Micro revised its statement later, saying only that it "exhibits behaviour similar to the Enhanced Metafile vulnerability of MS05-053" .

"Our Trend Labs team is currently working with Microsoft to resolve whether Troj_emfsploit.A does indeed fall under the category of code exploiting the MS05-053 vulnerability, or whether it is only a related piece of code but not totally exploiting MS05-053," the company said in a statement.

Trend Micro describes the new Trojan as a "proof of concept". It received one sample of the code from a customer in Japan, but it has not been detected anywhere else.

The company rates the overall risk as 'low', but the speed at which the exploit was developed has raised concerns in the industry.

Alan Bentley, UK managing director of patch management vendor PatchLink, said: "The emergence of this exploit within just 48 hours of Patch Tuesday just reinforces the movement towards zero-day attacks.

"As virus writers become more sophisticated, IT staff will really be tested when it comes to security protection.

"The time to patch has been diminishing for some time, and it is only a matter of time before we are faced with hours to patch rather than days."

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Related whitepapers

Related jobs

Most watched

Social networking

Summit: How businesses should manage their brands online

In part one of V3.co.uk's interview with Dirk Singer, he dicusses social media monitoring strategies

RIM discusses new developer tools

Blackberry exec on the latest offerings for programmers

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

Alcatel-Lucent logo

Summit: Networks swamped by information overload

Alcatel-Lucent's Neal Tilley talks about how enterprises and carriers can...

EU flag

Breach notification laws get green light

Privacy rights strengthened in Europe

Richard Thomas

Summit: Richard Thomas advises on handling the data deluge

Former Information Commissioner speaks out on government databases and data...

oracle sun

War of words escalates between EU and Oracle

Commission comes out fighting after criticism from Oracle and Washington

Primary Navigation