JPG-GDI Vuln- Your Time is Up

By Roger on September 23, 2004 1:36 PM |

There are now exploits out there that will exploit the jpg vulnerability to open a remote command prompt or create a local administrator account. While I dont see how this could turn into a worm like sasser or blaster, it could easily be used to spread spyware, and to develop a bot network. Its like mydoom. It could leave a port open that is later harvested by another worm.

Its a good time to be running a firewall, and to be careful of what links are followed. Head over to windows update, and then office update. After that run the GDI Scan Tool available over at SANS.

Categories

General

About this Entry

This page contains a single entry by Roger published on September 23, 2004 1:36 PM.

SUN JVM Exploit was the previous entry in this blog.

The BotNet Came Calling is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Subscribe to feed Subscribe to this blog's feed
Add to Google
Please contact me by leaving a comment where appropriate. Otherwise, you can click here to reveal an email address for me.
Got Backups? Get Safe Online Remember Rick Rescorla Powered by Movable Type 4.2-en

Search