Trojan Targets Unpatched Windows Flaw

["Fergie (Paul Ferguson)" <fergdawg () netzero net>]

I'm not exactly sure what to make of this.

Via eWeek:

[snip]

Virus writers are actively exploiting a security vulnerability in the Microsoft Jet Database Engine that remains 
unpatched more than five months after it was first reported to the software giant.

The mail-borne exploit, which camouflages itself as a Microsoft Access file, infects Windows machines through a "highly 
critical" flaw in the Microsoft Jet database engine—the lightweight database widely used by applications such as 
Microsoft Office 2000, Office 2003, Access 2000 and Access 2003.

The vulnerability—along with proof-of-concept exploits—was first reported to Microsoft in March along with a warning 
that it could be used by malicious hackers to take complete control of a victim's computer.

Microsoft has never publicly acknowledged the existence of the bug, which affects fully patched systems with Microsoft 
Access 2003 and Microsoft Windows XP, including Service Pack 2.

However, according to an advisory from Symantec Corp.'s security response unit, the unpatched hole is being exploited 
to drop a malicious Trojan horse identified as "Backdoor.Hesive."

The exploit has been discovered in the wild. Symantec rates the distribution of the Trojan as "low" but warned that the 
potential for damage is significant.

[snip]

http://www.eweek.com/article2/0,1759,1865511,00.asp

- ferg

--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg () netzero net or fergdawg () sbcglobal net
 ferg's tech blog: http://fergdawg.blogspot.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.