New threat to Microsoft from attack code » Computer internet security  
Computer and internet security news
computer and networking security portal
 
|
|
|
News
|
Advertise
|
|
Products
|
Contact

New threat to Microsoft from attack code



Monday, October 20, 2008, 0:24
This news item was posted in Microsoft security category and has 0 Comments so far.

Microsoft’s Host Integration Server 2006 is under threat of attack following the release of malware into the wild. The software was released Wednesday as part of the Metasploit hacking toolkit.

Microsoft released a patch for this flaw on Tuesday, as part of its monthly security updates. The bug lies in the SNA remote procedure call used by the server to communicate with the mainframe.

Normally, this service would be blocked by a firewall and in a typical configuration the attacker would need to have an account on the Host Integration Server in order to launch the attack. However, poorly configured machines such as test systems might be vulnerable to an attack, said Russ Cooper, a manager with Verizon Business’s RISK Team.

This Host Integration Server flaw was one of 20 security bugs patched by Microsoft this month, but it is the first to be exploited by hackers since the patches were released Tuesday.

Related posts:

  1. Microsoft confirmed the new sql security threat
  2. Microsoft Corp issued a zero day attack advisory
  3. Microsoft has released an out-of-band patch
  4. Microsoft cursor patch causes XP trouble
  5. Microsoft is warning customers about a zero-day flaw
  6. WiFi driver bug can attack Linux

Related posts brought to you by Yet Another Related Posts Plugin.





Tagged with: , , ,

You can leave a response, or trackback from your own site.

Leave a Reply

vulnerability stems from a buffer overflow condition in IE for an XML
Phony email from Microsoft is a Worm




:::: Recent entries


 
Join My Community at MyBloglog!



My BlogCatalog BlogRank

Computers Blogs - Blog Top Sites