setSlice() exploitation in the wild – MASSIVE

exploit code is available:
http://www.milw0rm.com/exploits/2440

sans diary:
http://isc.sans.org/diary.php?storyid=1742

and this is so massively exploited, it makes vml look cute. there’s a rootkit, some other malware, and haxdor! (a phishing trojan horse)

thanks to roger thompson at explabs.com for first reporting it.

gadi evron,
ge@beyondsecurity.com.

Share
  • http://sf-freedom.blogspot.com Trirat Kira P

    This bug is 2 months ago and there is no one interested in it, underground community or M$. But things change when H D Moore releases the exploit – kiddies try to reproduce it and M$ try to fix it, lol.