ANI Patch Released, Patch ASAP
Tuesday April 3, 2007 at 9:00 am CST
Posted by Craig Schmugar
Microsoft has released a patch for CVE-2007-1765 (aka CVE-2007-0038). Anyone using a vulnerable system should install this patch ASAP. Hundreds of websites have been found to be hosting exploits, with thousands of websites and spam leading users to that malicious code. The number of attacks is likely to rise steadily for several weeks if not months. Exploit-ANIfile.c detection quickly rose to the number one spot on our consumer regional virus tracker chart for Asia, over the weekend. We can expect the detection of this exploit to top the charts as the most widely seen exploit over the next few weeks as well. Currently it is taking up the number six spot on the worldwide chart:
There has been some confusion around whether or not Vista is vulnerable to remote code execution. I’ve posted this video to demonstrate this case. Here, with DEP enabled (default settings), and IE7 running in protected mode, you will see a proof of concept in action.
April 4th, 2007 at 2:47 am
[…] Trackback […]
April 4th, 2007 at 6:31 am
the code executed can’t do nothing, can’t write files, because that exe is executed as a low integrity process because IE7 runs in protected mode
April 9th, 2007 at 2:26 pm
So what is that U-tube thing sopposed to be showing? This whole story doesn’t add up. When I visit Microsofts Windows Update (Xp SP2) I get to download IE7, no patch. Is this just a ploy from M$ to get people to install Internet Exploder 7?