Slashdot Mirror

← Back to Stories (view on slashdot.org)

Exploit Released for Unpatched Windows Flaw

Posted by samzenpus on from the patch-it dept.

woodchuck writes "Washington Post reports that another Windows hole has been found and exploit code is now running lose that makes swiss cheese of current patches and security measures. From the article: "Security researchers have released instructions for exploiting a previously unknown security hole in Windows XP and Windows 2003 Web Server with all of the latest patches applied. Anti-virus company Symantec warned of the new exploit, which it said uses a vulnerability in the way Windows computers process certain image files (Windows Meta Files, or those ending in .wmf). Symantec said the exploit is designed to download and run a program from the Web that downloads several malicious files, including tools that attackers could use to control vulnerable computers via IRC.""

2 of 386 comments (clear)

  1. MS page on the exploit... by Don+Muraco · · Score: 0, Offtopic

    http://www.microsoft.com/technet/security/bulletin /MS05-053.mspx Patched you say?

    --
    The Don... The real trouble with reality is that there's no background music.
  2. Remember when... by Subrafta · · Score: 0, Offtopic

    ...the mainstream press used to site Slashdot for cutting edge tech stuff? And now Slashdot links to the mainstream press for Windows exploit news.

    --
    Vuja De: That sinking feeling that this is going to happen again. Often occurs in meetings with Product Managers.