Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hackers Jump On Newest IE7 Bug

Posted by CmdrTaco on from the hop-on-pop dept.

CWmike writes "Attackers are already exploiting a bug in Internet Explorer 7 that Microsoft patched just last week, security researchers warned today. Although the attacks are currently in 'very, very small numbers,' they may be just the forerunner of a larger campaign, said Trend Micro's Jamz Yaneza. 'I see this as a proof-of-concept,' said Yaneza, who noted that the exploit's payload is extremely straightforward and explained that there has been no attempt to mask it by, say, planting a root kit on the victimized PC at the same time. 'I wouldn't be surprised to see this [exploit] show up in one of those Chinese exploit kits,' he added. The new attack code, which Trend Micro dubbed 'XML_Dloadr.a,' arrives in a spam message as a malicious file masquerading as a Microsoft Word document."

14 of 162 comments (clear)

  1. Whew! by the_humeister · · Score: 3, Funny

    Glad I'm using Lotus Notes. Hmm...

    1. Re:Whew! by the_humeister · · Score: 3, Funny

      Oops! Wrong exploit I was referring too. Stupid 'submit' button...

    2. Re:Whew! by Anders · · Score: 5, Funny

      Glad I'm using Lotus Notes.

      That's a first!

  2. Re:Hopefully attacks like this won't be as prevole by the_humeister · · Score: 4, Insightful

    And then the exploits will occur with the browser that most people are using. Face it: there are bugs in every piece of software out there, and it's just a matter of time before someone finds and exploits them.

  3. Re:Hopefully attacks like this won't be as prevole by Anonymous Coward · · Score: 5, Insightful

    The new attack code, which Trend Micro dubbed "XML_Dloadr.a," arrives in a spam message as a malicious file masquerading as a Microsoft Word document. If the fake document is opened, the exploit hijacks PCs that have not been patched...

    Running Chrome or Firefox won't stop idiots from opening strange attachments.

  4. Re:Hopefully attacks like this won't be as prevole by rolfc · · Score: 5, Funny

    Running Chrome or Firefox won't stop idiots from opening strange attachments.

    Running Linux will.

  5. Masquerading? by TheRaven64 · · Score: 5, Funny

    a malicious file masquerading as a Microsoft Word document

    I don't think this is the same definition that the rest of us use. In related news, a lizard was seen masquerading as a gecko.

    --
    I am TheRaven on Soylent News
  6. Re:Hopefully attacks like this won't be as prevole by peterbye · · Score: 4, Insightful

    That will be true if all those people running windows using administrator accounts move over to running linux as root. Those running linux properly will still be pretty much unaffected.

  7. Re:Hopefully attacks like this won't be as prevole by Dotren · · Score: 3, Interesting

    Running Linux will.

    Apparently not if you're using KDE or GNOME.

  8. Re:Hopefully attacks like this won't be as prevole by Greyfox · · Score: 4, Informative
    Back in the day when dinosaurs and mainframes walked the earth and the system programmer's room was likely to have more than one half-drunk cup of coffee with a cigarette butt floating in it, it was not uncommon to get an E-mail around Christmas time with an attachment in it. The attachment purported to display an ASCII Christmas tree on your terminal, complete with flashing ornaments and such.

    When it was run, this attachment would helpfully and quietly forward itself to everyone in your address book. A couple of days later, after cleaning up the smoking wreckage of the E-mail system, system administration would send out an E-mail suggesting that it's not a good idea to run programs from unknown sources.

    This was on IBM VM/CMS, a notably not-Microsoft OS.

    --

    I'm trying to teach myself to set people on fire with my mind... Is it hot in here?

  9. Re:Hopefully attacks like this won't be as prevole by lord_sarpedon · · Score: 3, Insightful

    Not all that much really. Easy enough to run a spambot with user privs. Any of the data you want to steal is in ~. If you last long enough without detection, you can grab the user's password with an X keylogger and start doing extra naughty stuff with root.

    --
    "Strangers have the best candy" -Me
  10. Re:Hopefully attacks like this won't be as prevole by dedazo · · Score: 5, Interesting

    It's not that difficult. I can turn your shiny Linux box into a bot zombie by sending you a Perl script in a tarfile with the execute bit set and asking you to extract and run it. I don't even need root access. More sophisticated? Fine, how about I do the same thing but use, say, Python and a simple wxWidgets UI to ask for your root password? You know, because I need it to "update your system". Chances are good you have all that installed on your system if you use the average distro.

    Don't underestimate the power of simple social engineering or the tendency of users to do dumb things. And don't overestimate the alleged technological superiority of your OS. I don't need to code an ELF binary in x86 assembler to do damage, and no one writes destructive viruses anymore. Neither you nor your data are the target. The commodity being sought here is your machine and its network connection.

    --
    Web2.0: I love when people Flickr my cuil and digg my boingboing until my google is reddit and I start to yahoo
  11. Re:minor pedantry by JasterBobaMereel · · Score: 5, Funny

    ...and the plural of mongoose is polygoose ....

    --
    Puteulanus fenestra mortis
  12. Re:Hopefully attacks like this won't be as prevole by Kugrian · · Score: 3, Funny

    But what about those of us who are callous (lazy) enough to run as root 24/7 ? We're just not naive enough to run foreign attachments from people we don't know (or don't trust).

    Sure, make things nerf-safe for the common user, but don't go bashing those of us who actually run these machines.

    Tell me about it.

    I got rid of my front door a few weeks ago as I was sick of trying to find my keys. I can live with all the thefts and waking up to find the odd vagrant crashed out on my sofa, but it's the people that bash on me about it that pisses me off.