Fears of new Windows exploit grow
Fears are growing that vulnerabilities detailed by Microsoft on September 4 may be exploited soon, after a research company published a paper providing guidance on how these could be exploited.
There are three vulnerabilities detailed in the advisory, two that could allow arbitrary code execution and one that could result in a denial of service. A posting to the Full-Disclosure mailing list said an expoit for the DoS was available in the wild.
The Microsoft Product Support Services team, in a posting to the Full-Discloure mailing list, said that while it had no reports of actual exploit code being publicly available or being used actively in a worm or virus, it urged customers who were vulnerable to patch their systems immediately.
[ Read more ]