Slashdot Mirror

← Back to Stories (view on slashdot.org)

Duqu Installer Exploits Windows Kernel Zero Day

Posted by Unknown on Wednesday November 2, 2011 @02:55AM from the windows-industrial-control-edition dept.

Trailrunner7 writes with an excerpt from Threatpost: "A newly discovered installer for the Duqu malware includes an exploit for a previously unknown vulnerability in the Windows kernel that allows remote code execution. Microsoft is working on a fix for the kernel vulnerability right now. The exact location and nature of the flaw isn't clear right now. The installer uses a Word document to exploit the vulnerability and then install the Duqu binaries."

3 of 164 comments (clear)

Min score:

Reason:

Sort:

Word document for a remote exploit? by kervin · 2011-11-02 02:59 · Score: 2, Interesting

I'm a little confused. Why would you need a Word document to exploit a remote vulnerability?
Borg Bill is gone! by Anonymous Coward · 2011-11-02 03:24 · Score: 1, Interesting

Hey! Where is Borg Bill? Put it back right now!
HOW the HELL by v1 · 2011-11-02 03:37 · Score: 2, Interesting

do you have a kernel security bug in a word processor?
Normally I'd be exaggerating with a statement like this, but not this time I think: "only with Microsoft..." Every time I see something like this I can't help but think they can't possibly pull off something stupider. And yet somehow they just keep doing it.

--
I work for the Department of Redundancy Department.