Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Trend Micro ServerProtect Update SANS ISC InfoSec Forums

Special Webcast: What you need to know about the crypt32.dll vulnerability. Register Now

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Trend Micro ServerProtect Update

Indications are that the ServerProtect exploit is against an older vulnerability from earlier this year, February 2007.  This vulnerability was patched previously.  The vulnerability appears to be "vulnerabilty one" in this advisory:  http://dvlabs.tippingpoint.com/advisory/TPTI-07-02

But this does indeed appear to be a new exploit, thus machines are being actively compromised if they haven't been patched.

Kyle

112 Posts

Sign Up for Free or Log In to start participating in the conversation!