May 10, 2006

Exchange Exploit Code?

exchange-wormLooks like some proof-of-concept code may already be coming out for yesterday’s Exchange Patch:

“Immunity [Security] has released an iCal fuzzer to their product partners,” read the Symantec warning. “Although it is not known if this fuzzer is capable of triggering the bug addressed by this alert, there is a possibility it will in the future, or may find other unreported vulnerabilities. The fuzzer has been distributed as a module for the CANVAS exploit framework. Given the rapid development of this tool, it is likely that an exploit for this issue will be developed in the near future.”

Since it’s wormable, if your organization runs Exchange you should be seriously concerned about this one. If you can’t get it patched soon, you may consider using your spam filters to block the iCal and vCal messages from ever getting to your Exchange server.

Hackers Expected To Target Exchange [InformationWeek]

Share It: del.icio.us:Exchange Exploit Code? digg:Exchange Exploit Code? reddit:Exchange Exploit Code? Y!:Exchange Exploit Code?
Read More: Threats, Patching, Vulnerabilities
Related: Start Your Patching Engines - May Patch Roundup
 Exploits Available for Yesterday’s MS Patches
 POC Code for MS06-040
 Random Memory Writing in Vista

Post a Comment...

(required)

(required)
(will not be published)

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>