Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: MS05-051 exploit spotted SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
MS05-051 exploit spotted
Trend Micro reports that they spotted a POC for MS05-051 in the wild. They found it included  as a new exploit in other malware. We don't have any details yet beyond what can be found in at Trend Micro. If you find a copy of this malware, please forward it.

Trend Micro states that the malware was written in Visual Basic, which usually indicates some low skilled bot-kid. Kind of odd to see it surface this way, but having it included as a new warhead in existing malware matches past patterns.

We will update this diary as we learn more.

Johannes

3915 Posts
ISC Handler
Oct 18th 2005

Sign Up for Free or Log In to start participating in the conversation!