Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Overview of the WMF related articles at the ISC SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Overview of the WMF related articles at the ISC
Since this is one of the more complex stories to follow I've made a quick overview of the WMF issues.

The first story on the WMF vulnerability and the initial exploit

The update explaining why we went to yellow the first time around

The story pointing to the Microsoft bulletin

The availability of the first snort sigs

The going back to green article

More WMF signatures

Lotus notes affected

The bandaid post: deregistering not reliable, extension filtering not enough

The free phone number for micrsoft support

Indexing and WMF

Musings on how to protect organisations beyond the trivial

An IM worm found using the WMF stuff

The second exploit, back to yellow, new sigatures and an unoffical patch


Swa Frantzen


760 Posts
Jan 1st 2006

Sign Up for Free or Log In to start participating in the conversation!