Digital Edition

SYS-CON.TV
IIS Vulnerability Update: Symantec Has (Maybe) Snagged Offending Code
"SSL worm" has maybe already been found

On April 22 Microsoft became aware of code available on the Internet that seeks to exploit vulnerabilities already addressed as part of its April 13 security updates, code that attempts to use the IIS PCT/SSL vulnerability on servers running Internet Information Services with the Secure Socket Layer authentication enabled.  The vulnerability was addressed by bulletin MS04-011 (www.windowsupdate.com) and Microsoft urged all customers to immediately install the MS4-011 update as well as the other critical updates provided on April 13. 

In addition, Microsoft published a knowledge base article KB187498 at http://support.microsoft.com/default.aspx?scid=kb;en-us;187498 which provides additional details on SSL and how to disable PCT without applying MS04-011. 

Now Symantec's "DeepSight Threat" network - a global group of sensors that tracks up-and-coming exploits - is reported to have obtained a copy of the code on April 27.

"The sample is automated code, but whether it's a bot or actually a worm, we don't yet know,"  said Alfred Huger, the senior director of engineering with Symantec's security response team.

Only a worm can infect other systems indirectly, by sending itself via e-mail or tucking copies into shared folders, Huger explained. But either way, he urged everyone to expedite their patching of this vulnerability.

"If this isn't a worm, I think we'll see one in short order," he said.

About Security News Desk
SYS-CON's Security News desk trawls the world of security for news of software, hardware, products, and services that seems likely to be of interest to infosec professionals and summarizes them for easy assimilation by busy IT managers and staff.

In order to post a comment you need to be registered and logged in.

Register | Sign-in

Reader Feedback: Page 1 of 1



ADS BY GOOGLE
Subscribe to the World's Most Powerful Newsletters

ADS BY GOOGLE

SUSE is a German-based, multinational, open-source software company that develops and sells Linux pr...
Lori MacVittie is a subject matter expert on emerging technology responsible for outbound evangelism...
NanoVMs is the only production ready unikernel infrastructure solution on the market today. Unikerne...
Big Switch's mission is to disrupt the status quo of networking with order of magnitude improvements...
Yottabyte is a software-defined data center (SDDC) company headquartered in Bloomfield Township, Oak...
Dynatrace is an application performance management software company with products for the informatio...
Chris Matthieu is the President & CEO of Computes, inc. He brings 30 years of experience in developm...
All in Mobile is a mobile app agency that helps enterprise companies and next generation startups bu...
Every organization is facing their own Digital Transformation as they attempt to stay ahead of the c...
Blockchain is a new buzzword that promises to revolutionize the way we manage data. If the data is s...
CloudEXPO | DevOpsSUMMIT | DXWorldEXPO Silicon Valley 2019 will cover all of these tools, with the m...
Serveless Architectures brings the ability to independently scale, deploy and heal based on workload...
I spend a lot of time helping organizations to “think like a data scientist.” My book “Big Data MBA:...
The standardization of container runtimes and images has sparked the creation of an almost overwhelm...
Whenever a new technology hits the high points of hype, everyone starts talking about it like it wil...
Wasabi is the hot cloud storage company delivering low-cost, fast, and reliable cloud storage. Wasab...
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitori...
David Friend is the co-founder and CEO of Wasabi, the hot cloud storage company that delivers fast, ...
In addition to 22 Keynotes and General Sessions, attend all FinTechEXPO Blockchain "education sessio...
Early Bird Registration Discount Expires on August 31, 2018 Conference Registration Link ▸ HERE. Pic...