Slashdot Mirror


Duqu Installer Exploits Windows Kernel Zero Day

Trailrunner7 writes with an excerpt from Threatpost: "A newly discovered installer for the Duqu malware includes an exploit for a previously unknown vulnerability in the Windows kernel that allows remote code execution. Microsoft is working on a fix for the kernel vulnerability right now. The exact location and nature of the flaw isn't clear right now. The installer uses a Word document to exploit the vulnerability and then install the Duqu binaries."

2 of 164 comments (clear)

  1. First post by GameboyRMH · · Score: 3, Funny

    Says it can spread over SMB shares too, but I don't think anyone in my company is dumb enough to ^H^H^H^ NO CARRIER

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
  2. Re:Word document for a remote exploit? by ArhcAngel · · Score: 4, Funny

    How long until this is used to create a script to jailbreak windows so we can install what we want on it?

    --
    "A person is smart. People are dumb, panicky dangerous animals and you know it." - K