Security, et al

Randy's Blog on Infosec and Other Stuff

«  Zero information on zero ... | Microsoft publishes advis... »

Update on zero day Word vulnerability

Sat, 20 May 2006 15:30:04 GMT

Bad news: The back door door does actively connect back to a malicious website (apparently a server in the 3322.org domain) and accepts commands.

Good news: It appears that most AV vendors have succedded in getting a signature out.

The SANS Internet Storm Center is doing a good job keeping up to date on this.

See http://isc.sans.org/diary.php?storyid=1346.

email this digg reddit dzone
comments (0)references (0)

Related:
Automating Review and Response to Security Events
Understanding the Difference between “Account Logon” and “Logon/Logoff” Events in the Windows Security Log
New Features in LogRhythm 4.0 Deserve a Place on Your Short List
Release of LOGbinder SP 3.0

Comments disabled

powered by Bloget™

Search


Categories
Recent Blogs
Archive