A new worm utilizing the MS05-039 vulnerability has became a major outbreak. More coverage upcoming. Details IRCBot is a fast-spreading worm affecting systems not patched for the MS05-039 vulnerability. Infected machines will reboot frequently, as well as connect to an IRC server and await further instructions...
Posted to
Security Manifest
(Weblog)
by
trafton
on
08-16-2005
Filed under: VIRUSES, SECURITY, Security (Medium), Security (Urgent), Viruses (Medium), Viruses (Urgent), Security (Very Urgent), Viruses (Very Urgent)
We are currently carefully tracking developing threats centered around vulnerabilities in the Windows operating system. As the Internet Storm Center (sans.org) puts it: The holiday news continues to be bleak, with a pair of critical vulnerabilities for Windows NT/2000/2003/XP. First, unless you're running...
The potentially very dangerous buffer overflow exploit that recently surfaced has already turned into a proof-of-concept, according to various sources. Symantec describes it thusly: Hacktool.JPEGDownload is a program that can be used to generate .jpg files that exploit the Microsoft GDI+ Library JPEG...
Breaking News: Security Holes Leave Hard Drive Read/Write Functions Open Adodb.stream provides a method for reading and writing files on a hard drive. This by-design functionality is sometimes used by web applications. However, when combined with known security vulnerabilities in Microsoft Internet Explorer...
Breaking News: "Ject" Downloader Exploits Unpatched Servers, IE A downloader known as Ject has been isolated in the wild and is believed to currently be affecting IIS web servers and Windows 2000 servers that have not applied update 835732, which is fully addressed in Security Bulletin MS04-011, available...
Not So Quiet Secunia is reporting here (IMPORTANT: Users of McAfee VirusScan will receive a FALSE detection when going to this page) that there is a new major vulnerability in Internet Explorer. Description : Two vulnerabilities have been reported in Internet Explorer, which in combination with other...
BREAKING NEWS: Sasser Goes Medium McAfee has just upgraded W32/Sasser.worm (which uses MS04-011) to Medium risk reflecting the amount it has spread. I personally have received a number of reports of this worm being in the wild. All users should upgrade immediately. A new Stinger detection is available...
Posted to
Security Manifest
(Weblog)
by
trafton
on
05-01-2004
Filed under: VIRUSES, SECURITY, Security (Medium), Security (Urgent), Viruses (Medium), Viruses (Urgent), Security (Very Urgent)
BREAKING NEWS: Internet Storm Center Announces Troubling New Phatbot Variant The Internet Storm Center has announced the discovery of yet another variant of the “Phatbot” family of worms. This variant appears to exploit a recent vulnerability. This would be the first worm to do so. From the diary of...
Thanks to Susan Bradley for this breaking security news report from Incidents.org: “Dave Aitel of Immunity Security has stated publicly that they have released working exploits of two vulnerabilities patched by MS04-011 to their CANVAS customers: http://lists.immunitysec.com/pipermail/dailydave/2004...