Trend Micro has reported that they have found a worm in the wild that abuses the recently-discovered MS05-053 vulnerability, according to their analysis here . The vulnerability, published three days ago, was rated as critical. The discovery of a worm in the field this quickly could make for one of the...
A new worm utilizing the MS05-039 vulnerability has became a major outbreak. More coverage upcoming. Details IRCBot is a fast-spreading worm affecting systems not patched for the MS05-039 vulnerability. Infected machines will reboot frequently, as well as connect to an IRC server and await further instructions...
Posted to
Security Manifest
(Weblog)
by
trafton
on
08-16-2005
Filed under: VIRUSES, SECURITY, Security (Medium), Security (Urgent), Viruses (Medium), Viruses (Urgent), Security (Very Urgent), Viruses (Very Urgent)
A new version of the extensive and successful MyDoom worm family has appeared. Fortunately, like many recent variants, this version has got off to a slow start and is unlikely to become a major threat. Details MyDoom.CF was discovered Tuesday, June 28th, 2005. It is a standard MyDoom family member, faking...
Microsoft has released three critical updates, one affecting Microsoft Word 2000 and 2002 and Microsoft Works Suite , and the others affecting Windows. In addition, a Moderate security bulletin affecting the Microsoft Telnet client has been re-released. Everyone running affected software should update...
We are currently carefully tracking developing threats centered around vulnerabilities in the Windows operating system. As the Internet Storm Center (sans.org) puts it: The holiday news continues to be bleak, with a pair of critical vulnerabilities for Windows NT/2000/2003/XP. First, unless you're running...
PERL.Santy is a worm that utilized the search engine Google in order to search for vulnerable web sites running phpBB software. phpBB 2.0.10 is affected; 2.0.11 is not. Vulnerable web sites will have this at the footer: Powered by phpBB 2.0.10 © 2001 phpBB Group Yet again, F-Secure's weblog did...
Thanks to Harry Waldron for the alert on this threat. Recently I mentioned on this blog that the Microsoft GDI+ Library JPEG Segment Length Integer Underflow vulnerability described in Microsoft Security Bulletin MS04-028 . Now we have the first example of a non-proof of concept use of this vulnerability...
The potentially very dangerous buffer overflow exploit that recently surfaced has already turned into a proof-of-concept, according to various sources. Symantec describes it thusly: Hacktool.JPEGDownload is a program that can be used to generate .jpg files that exploit the Microsoft GDI+ Library JPEG...
Breaking News: Security Holes Leave Hard Drive Read/Write Functions Open Adodb.stream provides a method for reading and writing files on a hard drive. This by-design functionality is sometimes used by web applications. However, when combined with known security vulnerabilities in Microsoft Internet Explorer...
Breaking News: "Ject" Downloader Exploits Unpatched Servers, IE A downloader known as Ject has been isolated in the wild and is believed to currently be affecting IIS web servers and Windows 2000 servers that have not applied update 835732, which is fully addressed in Security Bulletin MS04-011, available...