I read an article today from Techworld. I wanted to Discuss this in detail. I also found some links that suggest that Techworld is right.
[ad#ad2-right]
Andrew Storms, director of security operations at nCircle Network Security, speculated that the latest bugs were found by researchers using information disclosed in SMB fixes Microsoft released in October and November.[va Techworld]
According to my investigation, and I have been looking. I found a few SMB Vulnerabilities. One of them is CVE-2008-4835 and CVE-2008-4834. These two are capable of Remote Code Execution, and are Consider very High on the Impact list and all.
So Did people find these exploits or vulnerabilities from the last MS 08-067 patch? I would have to conclude it is a real possibility.
Although Microsoft did patch those holes this month. I grow to wonder just how much these hackers keeping the IT professionals on there toes. I hope people updated their system to prevent another worm because you don’t want the worm like Downadup Do you? I am sure there will be a worm or a virus that will exploit this in time, and I think sooner or later someone will use this just like the other one.