Friday, October 31, 2008

F-Secure Reports POC Binaries Targeting MS08-067 Vulnerability

F-Secure reported today:
"We are seeing the first Proof of Concept binaries that target the MS08-067 vulnerability on the following English localized systems:

Windows XP Service Pack 2
Windows XP Service Pack 3
Windows 2003 Service Pack 2

The payload is encrypted as normal. It's function is to add the guest account to the administrators group, thus allowing unlimited access to the machine. We detect the binaries as follows:

Backdoor:W32/Agent.DIN
Backdoor:W32/Agent.DIO
Backdoor:W32/Agent.DIP"
[bold added]

For further information on this vulnerability, see Out-of-Band Critical Update MS08-067 and, for goodness sakes, if you haven't updated yet, please do so now!

F-Secure: Proof of Concept binaries for MS08-067 targeting english Windows OS's








Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

No comments: