setSlice() exploitation in the wild – MASSIVE

exploit code is available:

sans diary:

and this is so massively exploited, it makes vml look cute. there’s a rootkit, some other malware, and haxdor! (a phishing trojan horse)

thanks to roger thompson at for first reporting it.

gadi evron,

  • Trirat Kira P

    This bug is 2 months ago and there is no one interested in it, underground community or M$. But things change when H D Moore releases the exploit – kiddies try to reproduce it and M$ try to fix it, lol.