Business Intelligence - Baseline
Home arrow Business Intelligence arrow Exploits Aplenty for Patch Tuesday Bugs















Renew Your Subscription

Business Intelligence



Exploits Aplenty for Patch Tuesday Bugs



By Ryan Naraine
2006-06-14
Article Views: 2596
Article Rating:starstarstarstarstar / 0

Less than 24 hours after Microsoft shipped patches for 21 serious software vulnerabilities, researchers have created and published proof-of-concept code.

Rate This Article:
Poor Best
Add This Article To:

Less than 24 hours after the release of patches for 21 product vulnerabilities, proof-of-concept exploits are popping up on the Internet.

According to the SANS ISC (Internet Storm Center), a group of volunteers who track malicious Web activity, there are at least five publicly available exploits for flaws patched in June's Patch Tuesday—including one for the MS06-027, the bulletin that covers a critical Microsoft Word code execution bug.

The Microsoft Word vulnerability has already been used in attacks against specific business targets, and the exploit signals that the window between the release of patches and the creation of exploits has narrowed considerably.

The Word exploit was released by vulnerability researchers at Immunity, a Miami-based penetration testing company.

Immunity's Word exploit was created after the first round of zero-day attacks and released IDS (intrusion detection companies) and larger penetrating testing firms as part of a partner program.

In early June 2006, the company updated its CANVAS product to include modules that exploited the Word bug.

CANVAS is a platform that hosts hundreds of exploits, automated exploitation systems and an exploit framework for penetration testers and security professionals worldwide.

On June 13, just hours after Microsoft's patches were shipped, Immunity released proof-of-concepts and CANVAS modules for the MS06-024 and MS06-025 bugs.

Those patches cover "critical," remote code execution flaws in the ubiquitous Windows Media Player and the RRAS (Routing and Remote Access Service) used in Windows.

Over at Milw0rm, a Web site that publishes exploits submitted by security researchers around the world, there are two separate proof-of-concepts for MS06-030, the bulletin that addresses a pair of flaws in Microsoft's implementation of the SMB (Server Message Block) protocol.

The SMB protocol is used in Windows to share files, printers, serial ports, and also to communicate between computers.

The release of exploit code—before or after patches are available—is a controversial practice that is frowned upon by Microsoft.

Read the full story on eWEEK.com: Exploits Aplenty for Patch Tuesday Bugs



 
 
>>> More Business Intelligence Articles          >>> More By Ryan Naraine
 



Sponsored Links
  • Get up and running in as quickly as 30 days with BI. Learn how today.

  • FREE Securing Smartphones & Tablets for Dummies Book from Sophos
  • 5 New Technologies That Will Change Enterprise ITAdvertisement
  • Build an IT Infrastructure That Delivers the Future
     
    		•
     
    FEATURED SPONSORED ARTICLES
    FEATURED SPONSORED VIDEOS

     

    Related Content

    Articles Labs/How-To Multimedia


    LATEST STORIES
    - Speech Recognition Speaks To Businesses
    - Eight Ways Top Companies Beat the Competitio...
    - Your Online History Jeopardizes Your Career
    - Things that Make Your CEO Nervous
    - 10 Ways to Work With People You Hate


     

     

    Advertisement
    rss graphic
           Baseline Newsletters

    Baseline:  

    Issue Index | Contact Us | About | Magazine Customer Service | Navigation Guide

    Quick Links:  

    Project Planners | Enterprise Resource Planning | Network and Online Security | Data Analysis | Process Management | Storage Devices| Link to Us

    Ziff Davis Enterprise Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters
    Tech RSS Feeds | White Papers | Tech Podcasts | Tech Video | VARs | System Builder

    Baseline | Careers | Channel Insider | CIO Insight | DesktopLinux | DeviceForge | DevSource | eSeminars |
    eWEEK | Enterprise Network Security | LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | Networking | PDF Zone |
    Publish | Security IT Hub | Strategic Partner | TechDirect | Technology White Papers | Windows for Devices

    Developer Shed | Dev Shed | ASP Free | Dev Articles | Dev Hardware | SEO Chat | Tutorialized | Scripts |
    Code Walkers | Web Hosters | Dev Mechanic | Dev Archives | igrep

    Use of this site is governed by our Terms of Use and Privacy Policy

    Copyright ©1996-2012 Ziff Davis Enterprise Holdings Inc. All Rights Reserved. eWEEK and Spencer F. Katt are trademarks of Ziff Davis Enterprise Holdings, Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Enterprise Inc. is prohibited.