New Windows Malware

Discussion in 'Windows, Linux & Others on the Mac' started by munkery, Oct 21, 2011.

  1. munkery macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #1
  2. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #2
  3. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #3
  4. munkery, Nov 1, 2011
    Last edited: Nov 2, 2011

    munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #4
    It has been confirmed that Duqu utilizes a local privilege escalation vulnerability to bypass discretionary access controls to install this malware at the system-level without prompting the user during installation.

    http://www.theregister.co.uk/2011/11/01/duqu_exploits_windows_zero_day/

    This means that this malware has access to even protected keystrokes, such as those related to security sensitive logins and other protected data entry.

    The vulnerability is a zero day in the Windows kernel. It is presently still unpatched but given the severity of the threat will most likely be fixed quickly.

    No workaround to mitigate the issue until a patch is ready has been provided by Microsoft.
     
  5. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #5
  6. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #6
    Vulnerability in Win32k.sys allows arbitrary code execution with kernel-mode privileges via the web browser in Windows 7. -> http://www.theregister.co.uk/2011/12/21/win_7_bug_crash_risk/

    This vulnerability would allow a sandbox escape as well as protected storage and protected data entry to be compromised. -> http://secunia.com/advisories/47237

    This vulnerability is not isolated to Safari running in Windows 7. -> http://pastebin.com/XTWnLF3p

    The vulnerability has been known to manifest in Firefox since 2005. -> https://bugzilla.mozilla.org/show_bug.cgi?id=320430
     
  7. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #7
  8. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
  9. munkery thread starter macrumors 68020

    munkery

    Joined:
    Dec 18, 2006
    #9

Share This Page