Sunday, September 25, 2005

M.S. I.E. Unspecified Remote Code Execution Vulnerability

A remote attacker can execute random code and gain unauthorized access as the user due to an unspecified remote code execution vulnerability in Microsoft Internet Explorer. So far no more information on this vulnerability is known or forthcoming and no known exploit code nor vendor-supplied patches are available.

Wednesday, September 21, 2005

Computer Information Security Vulnerabilities and Exploits

The best source for the most knowledgeable and informative up-to-date news and information for the Computer Information Security community about the latest vulnerabilities and exploits, hacker and cracker methods and signatures, is ycopfiles.com/exploits.

Monday, September 05, 2005

W32.Zotob.D

Zotob D, W32.Zotob.D, is a memory-resident worm, which copies itself to the Windows System folder as Windrg32.exe, and uses the Microsoft Windows Plug and Play Buffer Overflow Vulnerability to spread across networks. Zotob creates a registry key to re-run itself on start-up, contains a backdoor, and can follow simple commands from remote users. Finally, Zotob attempts to delete other malware and spyware from the infected system and from its registry too.