Dailydave mailing list archives

Re: Times up!

From: Mike Johnson <mike () enoch org>
Date: Thu, 23 Oct 2008 23:36:36 -0700

Fionnbharr wrote:

http://blog.threatexpert.com/2008/10/gimmiva-exploits-zero-day-vulnerability.html

"Critical vulnerability in Server Service has only been patched by
Microsoft (MS08-067), as a new worm called Gimmiv.A has been found
exploiting it in-the-wild."


Just to split hairs, Gimmiv is a trojan, not a worm.  It's just a
keylogger.  It in and of itself does not spread.  I have no idea why the
Threatexpert blogger called it a worm, everyone else calls it a trojan.
 While I do not claim to be an expert, the samples I have seen with my
own eyes are trojans and don't have the ability to spread.

That said, it won't take much for someone to write self-replicating code
exploiting this vulnerability.

Mike
_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

Times up! Dave Aitel (Oct 23)
- Re: Times up! Hybridus (Oct 23)
  - Re: Times up! Fionnbharr (Oct 23)
    - Re: Times up! Mike Johnson (Oct 24)
    - Re: Times up! dennis (Oct 24)
    - Re: Times up! dennis (Oct 24)
    - Re: Times up! Dave Aitel (Oct 24)
    - Re: Times up! Brandon Enright (Oct 24)
    - Re: Times up! Dennis Rand (Oct 24)
    - Re: Times up! dan (Oct 24)
    - Re: Times up! Erik Fichtner (Oct 24)
    - Re: Times up! Salvador III Manaois (Oct 24)
- Re: Times up! Alexander Sotirov (Oct 24)
- Re: Times up! Kostya Kortchinsky (Oct 24)