WAVCi: MS08-067 problems continued ...

Wednesday, November 05, 2008

MS08-067 problems continued ...

The first reports of a worm capable of exploiting the MS08-067 vulnerability are showing up. The dropped components include a kernel mode DDOS-bot that currently has a selection of Chinese targets in its configuration. The worm component is detected as Exploit.Win32.MS08-067.g by Kapsersky Lab. Other names can be used by other AV vendors. (Exploit:Win32/MS08067.gen!A = Microsoft's name)

<< Home

: Name: Eddy Willems; Location: Brussels, Belgium

I am professionally occupied with security and malware research, consultancy, training, media and PR. I now work as Security Evangelist for G Data Software AG. Formerly I worked for Kaspersky Lab and NOXS(Westcon). I'm also the Director External Security Industry Relationships for the EICAR organisation (European Institute for Computer Anti Virus Research). You can find a more detailed BIO on my website www.wavci.com

View my complete profile

Subscribe to my WEBLOG
Feedburner feed

or
RSS feed

WAVCi

Wednesday, November 05, 2008

MS08-067 problems continued ...

About Me

Previous Posts