A malware package orginating from China now offers an exploit for the Windows MS08-067 security vulnerability patched during a special October emergency release. This product is sold in the underground markets for around $37.80, although the license notes this tool is for pen-testing only.
All corporate and home users must stay up-to-date on security patches, as some vulnerabilities are being actively exploited.
MS08-067 Exploit - Featured in Chinese commercial malware kit http://www.avertlabs.com/research/blog/index.php/2008/11/14/exploit-ms08-067-bundled-in-commercial-malware-kit/ QUOTE: Probably the most widely reported topic in the Chinese Security community this month will be the availability of a commercial MS08-067 attack pack, customized for Chinese users. On October 26th, 2008, exploit code was posted on to a well-known public repository site. In a few days, malware kit author, WolfTeeth, was quick to sell a MS08-067 port scanning tool with attack capability to his “customers”, using free code from the Internet.
Both kits offers a free version, and a commercial version with enhanced features including:
• Kernel rootkit.
• Anti-virus software termination.
• Weekly anti-virus detection monitoring and evasion service.
• Web DDOS attack option