Register FAQ Groups Mark Forums Read

Go Back   Club CDFreaks - Knowledge is Power > International Chat: General Topics > Latest News Headlines
Attackers exploit latest MS flaws Attackers exploit latest MS flaws


Commercial ads
Latest News Headlines Discuss, Attackers exploit latest MS flaws at International Chat: General Topics forum; Quote:

Reply
 
Thread Tools
Old 16-06-2006   #1 (permalink)
CDFreaks Resident
 
Join Date: Feb 2005
Posts: 2,140
Attackers exploit latest MS flaws
Quote:
Hackers have crafted several exploits for security vulnerabilities that Microsoft patched last Tuesday.

The availability of exploits promoted McAfee to raise its Global Threat Condition to 'severe', the third highest rating on a four-step scale.

The SANS Internet Storm Centre, however, maintained its lowest rating of 'Green' and Symantec is warning of an 'elevated' security risk level, the second step on an four-step scale.

Proof-of-concept code has emerged that exploits a flaw in the way that Windows handles images in the ART format.

Exploits have surfaced that target flaws in Windows Media Player and Word as well as the Windows Routing and Remote Access Service, the Server Message Block feature and a flaw in Windows' TCP/IP Protocol driver, according to the SANS Internet Strom Centre.

The latter two are rated 'important', and Microsoft has issued a severity rating of 'critical' for the other three vulnerabilities.

Attackers had been exploiting the Microsoft Word vulnerability prior to the patch release to stage highly targeted attacks.

A disgruntled programmer published proof-of-concept code for the Routing and Remote Access Service vulnerability after Microsoft failed to acknowledge him in a security advisory.

The software vendor has since edited the bulletin to correctly reflect the programmer's contribution.

Security experts at iDefense crafted both the Windows Media Player and ART image file format exploits. The company had also filed the original bug reports with Microsoft.

Although iDefense has had ample time to create the proof-of-concept code, it demonstrates that malicious attackers would be able to craft a similar exploit.

Hackers in recent months have increased the speed at which they create exploits for recently patched security flaws. This allows them to target systems whose users have not yet installed the latest updates.
Source

Lordy will MS ever make something secure? Though saying that given it's prominance it's open for attack, before anyone says linux, there are a couple of proof-of-concepts, but as it is a niche area nobody so far has been bothered to attack it.
__________________
"I'm only happy when it rains, I feel good when things are going wrong, I only listen to the sad, sad songs, I'm only happy when it rains" (Garbage-"I'm Only Happy When It Rains")
JayC30 is offline   Reply With Quote
AltToday
CD Freaks

Beitrag
__________________
This advertising will not be shown to registered members.
Register your free account today and become a member on Club CD Freaks - Knowledge is Power
Old 16-06-2006   #2 (permalink)
CD Freaks Member
 
LastStand's Avatar
 
Join Date: Jul 2004
Location: Belfast
Posts: 249
Re: Attackers exploit latest MS flaws
Damn that was quick, they are getting better every year at finding bugs in MS code.
__________________
Ten Most Harmful Books of the 19th and 20th Centuries
1. The Communist Manifesto
2. Mein Kampf (My Struggle)
3. Quotations from Chairman Mao
4. The Kinsey Report
5. Democracy and Education
6. Das Kapital
7. The Feminine Mystique
8. The Course of Positive Philosophy
9. Beyond Good and Evil (The Nazis loved Nietzsche)
10. General Theory of Employment, Interest and Money
LastStand is offline   Reply With Quote
Old 23-06-2006   #3 (permalink)
Blown to smitherines
 
debro's Avatar
 
Join Date: Jul 1999
Location: The c@ke mixer
Posts: 10,352
Re: Attackers exploit latest MS flaws
I'm sure linux has lots of bugs too
With the OS being open source ... I'm sure theres a few weeds in the garden
__________________


SAVE THE EARTH!
It's the only planet with chocolate!

CDFreaks - Educating the Masses since 2005!
Click Here to join the educated & privileged!

Viva La Resistance!

Admitting that you've illegally downloaded movies/songs and need help to process/burn is comparable to robbing a bank, and walking into the bank the next day holding the bags of money to deposit them into your account.
Don't be surprised if people laugh at you when you make the headlines.
debro is offline   Reply With Quote
 
Reply


If you can't find where you are looking for, then become a member and get an answer fast! We have thousands of people online every moment of the day to help you! Click here


Can't find where you are looking for? Search our knowledgebase! Our Community Friends
 
 




Similar Threads
Thread Thread Starter Forum Replies Last Post
5055GDL flaws tpbeta Lite-On DVD Recorder and Player Forum 3 15-02-2007 01:45
Latest MS patches Quema34 Latest News Headlines 0 15-06-2006 01:32
Hackers work to exploit latest Firefox flaw pollushon Latest News Headlines 0 14-09-2005 04:43
flaws in brand new cds itp Newbie Forum 6 28-03-2004 18:43
removing flaws and crackles floyd Burning Software 2 02-05-2002 15:41


« Previous Thread | Next Thread »
Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


All times are GMT +2. The time now is 23:47.

Contact Us - CDFreaks.com - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.1.0
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100