Source

Technology - PC World
Attack Code Targets Windows
1 hour, 12 minutes ago

Add Technology - PC World to My Yahoo!

Paul Roberts, IDG News Service

Just days after Microsoft warned its customers about the release of code that can exploit a hole in its Secure Sockets Layer library, new code that claims to exploit another recently disclosed hole surfaced on a French language Web site.
Immediate Threat?

The Internet Storm Center has not received any reports of the LSASS exploit code being used to compromise Windows systems on the Internet, he says.

Internet Security Systems is also aware of the new code, but says it does not pose an immediate threat because it requires modification to work on computer networks.

"The exploit is unreliable and not for use in the wild," says Neel Mehta, research engineer at ISS.

Not true for exploit code that targets the Microsoft SSL hole, which was released last week. ISS has seen a significant number of exploits using the SSL exploit since Wednesday, Mehta says.