Results 1 to 4 of 4

Thread: *HEADS UP* - 0 day Microsoft DirectShow vulnerability .

  1. #1

    *HEADS UP* - 0 day Microsoft DirectShow vulnerability .


    A 0-day exploit within the msVidCtl component of Microsoft DirectShow is actively being exploited through drive-by attacks using thousands of newly compromised web sites, according to CSIS. The code has been published in the public domain via a number of Chinese web sites.
    Original advisory issuer : http://www.csis.dk/dk/nyheder/nyheder.asp?tekstID=799

    ISC : http://isc.sans.org/diary.html?storyid=6733

    This isn't up on secunia as of now.

    Be sharp.
    Parth Maniar,
    CISSP, CISM, CISA, SSCP

    *Thank you GOD*

    Greater the Difficulty, SWEETER the Victory.

    Believe in yourself.

  2. #2
    THE Bastard Sys***** dinowuff's Avatar
    Join Date
    Jun 2003
    Location
    Third planet from the Sun
    Posts
    1,253
    Since this it the first we've heard about it, isn't it a 1-day exploit?

    Sorry...

    /me returns you to the regularly scheduled conversation.
    09:F9:11:02:9D:74:E3:5B8:41:56:C5:63:56:88:C0

  3. #3
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,188
    Since this it the first we've heard about it, isn't it a 1-day exploit?
    You must be thinking of racehorses

    Exploits are 0-day on the day they are released, or used on the public. As this is frequently impossible to determine, it seems to be a sort of convention to take the day of first advisory/warning?

    It basically means "today", 1-day would be "yesterday".


  4. #4
    Only african to own a PC! Cider's Avatar
    Join Date
    Jun 2003
    Location
    Israel
    Posts
    1,683
    Nihil, Could you merge this with my other post?
    The world is a dangerous place to live; not because of the people who are evil, but because of the people who don't do anything about it.
    Albert Einstein

Similar Threads

  1. August security hotfixes
    By mohaughn in forum Microsoft Security Discussions
    Replies: 1
    Last Post: August 9th, 2005, 07:37 PM
  2. October MS updates
    By mohaughn in forum Microsoft Security Discussions
    Replies: 2
    Last Post: October 13th, 2004, 04:31 AM
  3. Evolution of a Linux User
    By gore in forum Tech Humor
    Replies: 9
    Last Post: October 1st, 2003, 08:53 PM
  4. Securing Windows 2000 and IIS
    By spools.exe in forum Microsoft Security Discussions
    Replies: 0
    Last Post: September 15th, 2003, 09:47 PM
  5. Lol Now I Know Why Everyone Hates Microsoft!!!
    By NUKEM6 in forum Non-Security Archives
    Replies: 10
    Last Post: January 24th, 2002, 06:21 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •