Last weekend, a dangerous exploit code aimed at exploiting a security vulnerability that could compromise systems running the Windows operating system was widely released on the Internet.
This new exploit code targets a security flaw in the Windows operating system, which Microsoft has classified as “extremely dangerous.” The vulnerability arises in a component of the operating system known as the Microsoft Distributed Transaction Coordinator (MSDTC). Microsoft has released a security patch for this vulnerability along with its October security bulletin – patch MS05-051.
A representative from Microsoft stated: Initial investigations into this code indicate that it is fully capable of successfully exploiting the security vulnerability in the Windows operating system, potentially leading to a denial-of-service attack. The Microsoft representative also affirmed that this code cannot execute remote code attacks. Remote code execution attacks typically mean that hackers could gain full control over a user’s PC, while denial-of-service attacks only cause damage to the system.
According to Microsoft, if users have installed the patch MS05-051, their systems are guaranteed to be “immune” to this new dangerous exploit code.
This is not the first dangerous code exploiting vulnerabilities in MSDTC to be released, but it is the first such code to be widely publicized on the Internet. The first exploit was developed by the security firm Immunity for the purpose of testing products.
When Microsoft released this patch, experts quickly warned that the vulnerability in the MSDTC component could lead to a scale of attacks similar to those caused by the Zotob worm in August. However, such attacks have not yet materialized. The emergence of this dangerous code could be the first indication that attacks are forthcoming.
Microsoft has stated that it is not overly concerned about attacks using this newly released exploit code. However, the company also recommends that users promptly install the latest security patches available.
HVD
