«
Zero information on zero ... |
Microsoft publishes advis... »
Update on zero day Word vulnerability
Sat, 20 May 2006 15:30:04 GMT
Bad news: The back door door does actively connect back to a malicious website (apparently a server in the 3322.org domain) and accepts commands.
Good news: It appears that most AV vendors have succedded in getting a signature out.
The SANS Internet Storm Center is doing a good job keeping up to date on this.
See http://isc.sans.org/diary.php?storyid=1346.
email this
•
digg
•
reddit
•
dzone
comments (0)
•
references (0)
Related:
Automating Review and Response to Security Events
Understanding the Difference between “Account Logon” and “Logon/Logoff” Events in the Windows Security Log
New Features in LogRhythm 4.0 Deserve a Place on Your Short List
Release of LOGbinder SP 3.0
powered by Bloget™