This section lists the latest news and blogs found via the daylife API (and for older items, the technorati API), which mention or otherwise discuss this vulnerability.
from: Threat Center - Spyware and Virus Removal
Win32/Conficker.A is a worm that spreads by exploiting the MS08-067 vulnerability. Execution of Win32/Conficker.A can create a service in Windows so that the worm loads itseld when Windows
from: WinSe7en
This security update resolves a privately reported vulnerability in the Server service. This is a remote code execution vulnerability ... on the vulnerabilities covered by this update: Server Service Vulnerability - CVE-2008-4250 Related posts
from: Peanuts to Profits With Thor Schrock
Today Microsoft will be pushing out a critical Windows Update designed to seal the browser vulnerability that as been gaining fame in the national ... out MS08-067 to fix a critical worm hole that affected Windows XP and 2000. Earlier, Microsoft released a pre
from: Security Bytes — A SearchSecurity.com blog
Microsoft to release emergency patch for IE XML flaw December 16th, ... the vulnerability, the attacks and the fix. Microsoft also released an emergency patch for the MS08-067 RPC
from: Fergie's Tech Blog
Ryan Naraine writes on the ZDNet "Zero Day" Blog: Microsoft is planning to ship an emergency Internet Explorer update tomorrow (December 17) ... months. Back in October, the company shipped MS08-067 to plug an extremely critical worm hole
from: New Digital Computer —
As attacks escalate, MS readies emergency IE patch in: Uncategorized Microsoft is planning to ship an emergency Internet Explorer update tomorrow ( ... MS08-067... comments
from: Microsoft Patch Watch
For those of us working in the field of information security the job can … More MS08-067 Exploits Microsoft said that new malware using an ms08-0 …(more) … The rest is here: A Sight for Sore Eyes
from: Latest Antivirus Updates
We are seeing fair amounts of infections using the MS08-067 vulnerability ... that exploit this vulnerability. Below you’ll see some screenshots of such tools. ms08-067 ms08-067 ms08-067 ms08-067 On 05/12/08 At 11:10 AM
from: Information Security
The University networks have undergone a few cyber attacks over the past few weeks which have negatively affected the availability of network ... among users of Microsoft Windows, based on the MS08-067 vulnerability. This is a possible cause
from: Microsoft Patch Watch
Feed captured: 28-11-2008 18:19:16UTC. Number of articles: … More MS08-067 Exploits Microsoft said that new malware using an ms08-0 …(more)… 26-11-2008 … Read more: SANS Internet Storm Center
from: Microsoft Patch Watch
The Frame4 Group - Your Business Solutions Partner … More MS08-067 Exploits Microsoft said that new malware using an ms08-0 …(more) … Read the rest of the post here: Frame4 Group - News Feeds
from: Microsoft Patch Watch
Microsoft Windows Server Service contains a flaw that may allow a malicious user … More MS08-067 Exploits Microsoft said that new malware using an ms08-0 …(more) … Continue here: 49243: Microsoft
from: thephotographer4you
Not updating has created a monster botnet [ No Gravatar] This article says it all for me to stay updated on my Wordpress blog and Computers ... reading this and the compatibility list on Lorelle’s blog. MS08-067: Not updating has created a monster ... Microsoft created MS08-067 to fix a serious vulnerability. MS even felt the problem was critical enough
from: MICE Technical Tidbits
After the many responses from readers I did some snooping and have some possible causes of this botnet pop-up issue ... Execution (958644): Microsoft Security Bulletin MS08-067, October 23, 2008 Microsoft issued a important ... the Microsoft MS08-067 Vulnerability! On December 6, Sun Issues 13 updates to Java according to a new post
from: SecurityOrb Blog Station
As I reported a few weeks back on both my blog and the SecurityOrb.com website, the worm titled WORM_DOWNAD ... patch MS08-067 update to protect against this worm.
from: Digital Degenerate
A recent report states that the new Windows worm dubbed Conficker has now infected over 500,000 PC’s worldwide and is still growing ... Windows machines. Machines that are infected have yet to apply the security update MS08-067
from: tanta offline downloads
[ worm] Security researchers at Microsoft Corp. late yesterday warned of a significant increase in exploits of a Windows bug that the software ... . Microsoft again urged users to apply the MS08-067 patch if they have not already done so. The new ... to “roll back” Windows to a pre-infection state. PCs that have been patched with the MS08-067 fix
from: Anti-Spyware and PC Security News
Microsoft MS08-067 Exploits As expected, we are seeing another wave of attacks exploiting the vulnerability detailed in security bulletin MS08-067 ... and acts like a web server. It propagates to random computers on the network by exploiting MS08-067. Once ... found several bots that exploit MS08-067. We detect them as Backdoor:Win32/IRCbot.BH. .
from: Network Administrator | TechRepublic.com
Microsoft created MS08-067 to fix a serious vulnerability ... . They were right, find out why. ——————————————————————————————————————- MS08-067 is the fix for server ... in their Malware Protection Center blog “More MS08-067
from: - Technibble - A Resource for Computer Repair Technicians & to get PC tech support help.
Qualys conducted a research and found out that 70% of users has still not applied the emergency patch (MS08-067) that Microsoft issued six weeks ago. “When Microsoft releases a patch out-of-cycle
from: | Security4all - Dedicated to digital security, enterprise 2.0 and presentation skills
Due to increased security measures (like SP2 with windows firewall and enabled automatic updates), the latest worm (Conficker) hasn't made a big impact. At least not like Nimda or Sasser did. Although Conficker picked up some pace and made us remember to patch those last machines. But did you patch everything? How to check?
from: Lost In The Flood
In testing today, we found some servers that had some massive vulnerabilities on them ... for MS08-067. And just today I see a report on worms exploiting the patch. A link dump from SANS:http
from: The Recycle Bin
It’s been about a month since Microsoft released MS08-067 – which I posted about here. Since the patch was released, malware writers have scrapped together a worm that is spreading through
from: Microsoft Patch Watch
Vuln: Linux Kernel SCTP Protocol Violation Remote Denial of Service … More MS08-067 Exploits Microsoft said that new malware using an ms08-0 …(more) … Continue here: Intuition & Elbow Grease
from: Napera Networks: Network Security for Business Mobility
As a followup to my post on the Conficker worm in the wild, Trend Micro reported on Sunday that they have now seen over 500, ... out how slow users were to apply Microsoft’s MS08-067 patch in October, ignoring the critical nature ... unpatched six weeks later. MS08-067 gave malware authors a previously unknown way to inject code
from: Zero Day | ZDNet.com
New worm exploiting MS08-067 flaw spotted in the wild Posted by Dancho Danchev @ 10:21 am Categories: Patch Watch, Hackers, Microsoft, ... , Arbitrary Code Execution, Anti Virus, Malware Tags: Security, MS08-067, Remote Code Execution, Network Worm, RPC Worm, Dancho Danchev MS08-067’s W32/Conficker.worm Worm Microsoft’s Security Response
from: Thoughts of a Technocrat
Via DarkReading -Researchers at Trend Micro have spotted a new botnet populating via a new Windows worm attack ... _DOWNAD.A, exploits the MS08-067 vulnerability that Microsoft patched in its Windows Server service ... last week urged customers to install the MS08-067 update, which protects against the worm attack
from: Thoughts of a Technocrat
Worm:Win32/Conficker.A is a worm that infects other computers across a network by exploiting a vulnerability in the Windows Server service (MS08-067). If the vulnerability is successfully exploited
from: Stupid Evil Bastard: Sacred cows make the tastiest hamburger.
Meanwhile back in the Windows ‘verse all the anti-virus and system patches in the world won’t make a bit of difference if no one bothers to actually ... be forced onto systems: Microsoft issued a patch for MS08-067 on October 23 and rates the severity
from: PaulDotCom
by Paul Asadoorian It has been a few weeks since the release of patches (and exploits) for MS08-067. We all should have had plenty of time to deploy patches to our systems and reboot for them
from: Charles Gardner’s Effective IT Blog
In late October, Microsoft released a software patch to address a problem in Windows operating systems ... s the big deal about October? Microsoft released an out-of-cycle patch (MS08-067) for Windows on October
from: Synergetic Data Systems Blog
As expected, we are seeing another wave of attacks exploiting the vulnerability detailed in security bulletin MS08-067. Early last week we blogged about MS08-067 exploits. At that time, the number of exploits ... . It propagates to random computers on the network by exploiting MS08-067. Once the remote computer is exploited
from: ChewOnTech.com - ChewOnTech
Slashdot It! Symantec is warning of a sharp jump in online attacks that appear to be targeting a recently patched bug in Microsoft's Windows ... , but Symantec said Windows users should still make sure they've applied the MS08-067 patch for the bug ... we don't see this rise in MS08-067 attacks that would raise any alarms for us," in a Friday blog
from: Daily cyber threats and internet security news
Another Worm Exploiting MS08-067 Windows Flaw Spotted In The Wild Microsoft’s Security Response Center and McAfee are warning on increased network ... exploiting the already patched MS08-067 vulnerability. After last month’s ruckus made by Microsoft’s out-of-band patch, another threat leveraging the MS08-067 vulnerability was recently reported
from: InfoWorld - Information Technology Web Services News & Reviews
Security researchers at Microsoft Corp. Tuesday warned of a significant climb in exploits of a Windows bug it patched with an emergency fix last ... the MS08-067 patch if they have not already done so. Learn how to secure your systems with Roger Grimes ... that have been patched with the MS08-067 fix are protected, Mador stressed. Last week, Symantec
from: Network Lighthouse - Shining the Light on Security and Privacy
Over the last one or two years, we have seen a fairly major shift in the methods of criminals working on the internet ... of the changes that I have alluded to is the recent release of an out of band patch release, MS08-067 ... , and any worm based on MS08-067 was sure to gain additional publicity, in the interests of generating
from: Security to the Core | Arbor Networks Security
Symantec has rained their TheatCon to 2, citing: The ThreatCon is at level 2 ... on CVE-2008-4250 (MS08-067). Until we do, we’ll keep it at ThreadIndex 1.
from: PcTips Box | Tips and Tricks Central
The exploit for a vulnerability affecting the Server Service on all supported versions of Windows has been included in a commercial malware kit, available for sale. MS08-067 is labeled with a maximum severity rating of Critical, and the security bulletin is designed to patch vulnerable Windows operating systems, which could allow for remote
from: Computer Security Research - McAfee Avert Labs Blog
Probably the most widely reported topic in the Chinese Security community this month will be the availability of a commercial MS08-067 attack pack, customized for Chinese users. On October 26th, 2008, exploit code was posted on to a well-known public repository site. In a few days, malware kit author, WolfTeeth, was quick to sell a MS08-067
from: SecGuru
Earlier today we were informed about a bot that we’ve seen before, KernelBot, being dropped by an exploit tool for MS08-067. The exploit code is “67 ... around the CVE-2008-4250 vulnerability still, something that’s a bit unexpected given the number of PoC
from: PcTips Box | Tips and Tricks Central
Microsoft issued a warning related to the detection of new examples of malicious code in attacks attempting to exploit a vulnerability affecting ... that Microsoft was seeing consistent deployments of the MS08-067 patch, and urged customers that had failed
from: MSI :: State of Security
So, the worm based on MS08-067 was rumored last week and now SANS confirms that the worm is spreading from at least one host. SANS is blaming 61.218.147.66. We also have seen scans from 208.23.24.52
from: McAfee Security Insights Blog
As most of you now know, on 10/23, Microsoft announced a critical out-of-cycle patch (MS08-067) to fix a flaw being exploited by cybercrooks. The vulnerability affects all major versions
from: InfoWorld - Information Technology Web Services News & Reviews
A worm that exploits the bug Microsoft patched in an emergency update 11 days ago is actively attacking systems, several security companies and researchers said Monday. The worm, which Symantec Corp. labeled " Wecorl " but was dubbed "MS08-067.g" by Kaspersky Lab and Microsoft itself, likely originated in China, said Kevin Haley,
from: SecuriTeam Blogs
Summary: This is Frequently Asked Questions document about new, recently patched RPC vulnerability in Microsoft Windows. The document describes related Trojan malwares as well. It is worth of noticing that code execution type vulnerabilities in Office programs are widely used to industrial espionage since 2006
from: Infosecurity.US
Securiteam has published a Frequently Asked Questions document focused on the recent Microsoft Corporation (NasdaqGS: MSFT) Out-of-Band Patch, also known as the MS08-067 RPC Vulnerability. The Common Vulnerabilities and Exposures Project has monikered the vulnerability with a CVE-2008-4250 designation
from: SecuriTeam Blogs
This is Frequently Asked Questions document about new RPC vulnerability in Microsoft Windows. The document describes related Trojan malwares as well. It is worth of noticing that code execution type vulnerabilities in Office programs are widely used to industrial espionage since 2006
