Exploit against MS07-033 being used in the wild

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Didier Stevens

Threat Level: green

Exploit against MS07-033 being used in the wild
The Symantec folks identified a website exploiting a bug from this months Microsoft patches, specifically the Microsoft Internet Explorer Speech API 4 COM Object Instantiation Buffer Overflow Vulnerability. Here is the URL to their blog entry: http://www.symantec.com/enterprise/security_response/weblog/2007/06/deepsight_honeynet_detects_obf.html Apparently, the actual exploit is similar to the proof of concept code posted on a popular exploit site ten days ago.	Kyle 112 Posts Jun 23rd 2007
Thread locked Subscribe	Jun 23rd 2007 1 decade ago