Internet worm
Worm authors end year by targetting an 'extremely critical' security hole
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Hackers target zero-day Windows vulnerability

Users could get infected just by visiting a website

Tom Sanders, vnunet.com 29 Dec 2005
ADVERTISEMENT

Microsoft has issued a security advisory warning about an unpatched security hole in Windows that is actively being exploited by online criminals. 

Attackers are using a flaw in the way that Windows handles the .wmf (Windows Metafile) graphic file format. A specially crafted .wmf image placed on a website or sent through a spam email could allow the criminal to execute code on a user's system.

The arbitrary code execution lets the attacker install spyware or recruit a system for a zombie network, a collection of computers used for online crimes including sending spam or launching distributed denial of service attacks.

Microsoft urged users to update their antivirus software, and said that it is investigating the issue.

A patch is being developed which will be released either through Microsoft's monthly patch cycle on the second Tuesday of the month or as an out-of-cycle security update.

Security firm Secunia gave the vulnerability its highest severity ranking of 'extremely critical'.

Security firm F-Secure said on its blog that it has seen at least three different computer worms that exploit the security hole. The company refers to the worms as W32/PFV-Exploit.A, .B and .C. The threats are being spread by spam email messages and through several websites.

Users of Microsoft's Internet Explorer are automatically infected when they visit a webpage hosting an infected image. Firefox will first ask the user before opening the file. If the user approves, the PC will be infected.

The US Computer Emergency Readiness Team described several workarounds on its website that will mitigate but not eliminate the risk until Microsoft releases a patch.

The workaround includes avoiding .wmf files from untrusted sources and resetting the file association, or opening the files with an application other than Windows Picture and Fax Viewer.

See also:

Online pornography
Internet worm catches child porn surfer
Malware inadvertantly does something good for a change  21 Dec 2005
Christmas worm
Christmas worms target Microsoft
Unwelcome present from China  16 Dec 2005
Computer virus
Experts crack Sober worm code
Expect a major global outbreak on 5 January  09 Dec 2005
Instant messaging
Intelligent worm 'chats' to IM users
First virus that answers back  07 Dec 2005
Trojan horse
November breaks all malware records
Trojans overtake email viruses as organised crime gets more involved  06 Dec 2005
Apple worm
Hackers could worm into Apple's QuickTime
Four critical flaws hit popular media player  07 Nov 2005

All Hacking

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
Head of IT
| Computer People
Working for a growing and ambitious Professional Services company, an exciting opportunity exists for a hands on Head of IT to lead a global team and implement a best practices. Based in the centre of ... more >
ICT Infrastructure Support Analyst - Interviewing Today!
| Computer People
Fantastic new opportunity for an ICT Analyst who can work without supervision to join this exciting organisation providing a lead role in maintenance and operation of their IT infrastructure and Telephone networks. The successful candidate ... more >
Data Manager - Supply Chain
| Computer People
A leading UK company in the Aerospace ... more >
UNIX Server Specialist
| Computer People
Working for an innovative and creative software company, an opening has been created for a forward thinking UNIX expert to implement leading edge network solutions into a corporate environment. Working in a team of experts, ... more >
More job opportunities
Useful links: About us . Privacy policy . Terms & conditions . Site map . Bookmark this site
Consumer Technology websites:
Active Home Product reviews, competitions, news
Computeractive Software reviews, hardware reviews, buyers' guides, workshops, downloads
Gizmodo the daily gadget blog: technology news and reviews
PC Magazine your personal guide to technology
PCW software product reviews, hardware product reviews, buyers' guides, competitions
WebAct!ve what's happening on the web
What PC? helping you purchase the right computer, digital camera, peripherals, gadgets and more
Blogs:
Test Bed The PCW Labs blog, PCW Inter@ctive A reader blog from PCW. Your views, your comments, your say, Windows Watch Keeping an eye on the latest XP % Vista news
Jobs & Recruitment websites:
Accountancy Age Jobs Accountant jobs, jobs in finance, audit jobs, cima jobs, acca jobs, corporate finance jobs, management accounting jobs, finance director jobs, finance recruitment agency directory, Top 50 accountancy firms, accountant salary survey
Computing Careers IT jobs, Programmer jobs, Developer jobs, IT manager jobs, Project manager jobs, SAP jobs, Oracle Jobs, Java Jobs, IT recruitment agency directory, Software engineer jobs
Inquirer Jobs Firmware developer jobs, Electronics engineer jobs
Other titles in the Incisive Media network:
Business Technology websites: BusinessGreen . Computing . Computing Business . CRN . The Inquirer . vnunet.com
Business & Finance websites: Accountancy Age . Best Practice . Financial Director . Management Consultancy
© Incisive Media Ltd. 2009
Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503