|
New attack proves critical Windows bug 'highly exploitable' |
|
|
Written by Daniel
|
|
Wednesday, 30 January 2008 |
|
Security researchers report a working exploit for the TCP/IP flaw that Microsoft had claimed was 'unlikely' to be used by attackers By Gregg Keizer, Computerworld
January 30, 2008
InfoWorld Security researchers Tuesday said they'd discredited Microsoft's claim that the year's first critical Windows vulnerability would be "difficult and unlikely" to be exploited by attackers. On Tuesday, Immunity updated a working exploit for the TCP/IP flaw spelled out Jan. 8 in Microsoft's MS08-001 security bulletin, and posted a Flash demonstration of the attack on its Web site. The exploit, which was released to customers of its CANVAS penetration testing software -- but is not available to the public -- was a revised version of code first issued two weeks ago. [Comment...]
|
