Today can reasonably be called "Exploit Wednesday" because invariably, those with details of vulnerabilities wait less than 24 hours before releasing loads of technical information, which means somebody somewhere simply cannot resist the urge to immediately write exploit code.
Be advised that detailed exploit code has been posted for the vulnerabilities covered by Microsoft Security Bulletins MS05-002, " Vulnerability in Cursor and Icon Format Handling Could Allow Remote Code Execution (891711) ." So it's probably only a "matter of daze" before the exploit code is used to unleash various forms of malware, including worms, viruses, Trojans, new forms of spyware, new spam tactics, and who knows what else.
The exploit code was published less than 24 hours after the patch became available, which no doubt means that most businesses and individuals have not even had a chance to install that patch. The exploit was published by at least one group that thinks of itself as a security solutions provider. Wishful thinking?
End of Article
You must be a registered user or online subscriber to comment on this article. Please log on before posting a comment. Are you a new visitor?
Register now
Get Mark Minasi’s Windows Server 2008 Audio CDs "Windows expert, consultant and best-selling author Mark Minasi shows you if 2008 is right for you and, if so, how to get the most out of it!
Take Control of Your Email Optimize your email storage – Download this white paper to learn key how-to’s in email storage management.
Get Windows IT Pro To Go! The Windows IT Pro Magazine Master CD is a powerful combination of content and convenience. Order now, and save up to 25%--plus you’ll get online access to new articles each and every month! Subscribe today!
Register
