Feeds

New exploit heralds Blaster 2 attack

Lock up your servers

  • alert
  • submit to reddit

Beginner's guide to SSL certificates

Security experts warned yesterday that crackers have succeeded in creating an exploit for the latest critical flaw with Microsoft?s RPC subsystem.

The flaw, disclosed last week, is similar to the vulnerability notoriously exploited by the Blaster worm. Now that exploit source code is available, the fear is that it is only a matter of time before a Blaster-like worm is released onto the Net.

Security experts at both iDefense and Counterpane Information Systems have verified the potential potency of the exploit against Win 2000 machines. Win XP systems, though vulnerable, could not be compromised via this particular attack tool, which nonetheless raises the threat level an extra notch.

Counterpane said the exploit (which it found on an underground Web site) opens an interface on vulnerable systems that would enable crackers to countermand the system and issue malicious commends.

Ken Dunham, an analyst at iDefense, said it is "highly likely" that malicious code based on the exploit would be released over the next few days.

So there's now even more reason to apply Microsoft security patch, or implement workarounds, as explained in detail in Microsoft's security advisory here. An advisory by security clearing house CERT can be found here. ®

Related Stories

Blaster worm spreading rapidly
Blaster rewrites Windows worm rules
Windows Update still standing despite Blaster
Blaster variant offers 'fix' for pox-ridden PCs
FBI arrests Blaster suspect
Feds sexed up case - Blaster suspect
Panel probes the half-life of bugs
MS amends anti-Blaster fix

Intelligent flash storage arrays

Whitepapers

Go beyond APM with real-time IT operations analytics
How IT operations teams can harness the wealth of wire data already flowing through their environment for real-time operational intelligence.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Website security in corporate America
Find out how you rank among other IT managers testing your website's vulnerabilities.