Exploits For Microsoft's Latest Bulletins Spreading

You knew it would happen: Exploits are on the loose that take advantage of vulnerabilities cited in Microsoft's latest security bulletins.

In particular, attackers are targeting the Workstation service vulnerability (MS06-070) and the XML vulnerability (MS06-071). At least two exploits exist for both of those vulnerabilities.

Microsoft published an advisory regarding the exploits for the Workstation service. In short, the advisory probably doesn't offer any information that you don't already know: The company "is aware of public proof of concept code targeting the vulnerability" and you should either apply the patch or implement a workaround.

If you can't load the MS06-070 patch then block access to ports 139 and 445 (used by the Workstation service) at your network borders.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.