Wednesday, November 05, 2008
The first reports of a worm capable of exploiting the MS08-067 vulnerability are showing up. The dropped components include a kernel mode DDOS-bot that currently has a selection of Chinese targets in its configuration. The worm component is detected as Exploit.Win32.MS08-067.g by Kapsersky Lab. Other names can be used by other AV vendors. (Exploit:Win32/MS08067.gen!A = Microsoft's name)
<< Home