[pchelpers] News:Hackers Exploit Windows DNS Vulnerability

By Jennifer LeClaire 
April 18, 2007 9:15AM
Several security vendors have issued a workaround patch for the DNS bug
now being exploited by hackers, but word from Microsoft on an official
DNS patch is sketchy. Chris Budd, of the Microsoft Security Response
Center, says that Microsoft has teams around the world working on the
DNS patch, and hopes to have updates no later than May 8, 2007.

According to I.T. security Relevant Products/Services firm Sophos, a
worm is exploiting an unpatched zero-day vulnerability in the DNS
services of several Windows operating systems. 

Also known as Nirbot or Rinbot, the W32/Delbot-AI worm is taking
advantage of a vulnerability in the way the Windows DNS Server's Remote
Procedure Call (RPC) interface has been implemented. The hackers' worm
has been able to exploit the flaw by sending a specially crafted RPC
packet to vulnerable servers.

If the worm successfully infects a server, it allows hackers to gain
control over the computer, giving them the ability to determine what it
does and steal information from unsuspecting users. The worm also can
exploit an old vulnerability present in Symantec's antivirus product
line, which was patched a year ago.

More here:
http://www.sci-tech-today.com/story.xhtml?story_id=11200BH5I6TC
-- 
John Durham
Site http://modecideas.com
Server hosted on Ubuntu 4.10
Good advice is like good paint. It only works when applied.



-- 
-------list-services-below-----------
Regards, John Durham (list moderator) <http://modecideas.com/contact.html?sig>
Freelists login at http://www.freelists.org/cgi-bin/lsg2.cgi
List archives at http://www.freelists.org/archives/pchelpers
PC-HELPERS list subscribe/unsub at http://modecideas.com/discuss.htm?sig
Latest news live feeds at http://modecideas.com/indexhomenews.htm?sig
Good advice is like good paint- it only works if applied.

Other related posts: