Another update to exploit?



I didn’t see this reported anywhere, but since yesterday when there was an update to the metasploit module for the WMF vulnerability I think there’s been yet another update. I read yesterday that it had been updated and could evade all known IDS signatures. I downloaded the update to continue my Win98 testing. Then today found that there was another update. I haven’t compared the old/new versions but can’t help but wonder if this means more scrambling of antivirus writers for new signatures to keep up.


Spyware Confidential is linking to an update at Larry Seltzer’s blog updating the situation on antivirus scanning for the exploit.

It’s good to see the list current, I was afraid the 12/31 list was giving a bit of overconfidence.

After I read, I tested the new module variation against clamav and must say it performed very well, 100%.

Related Posts

Blog Traffic Exchange Related Posts
  • Antivirus scanning update for WMF I hung on to the last batch of 20 wmf exploit samples I had been working with for the purpose of testing my clamantivirus install against them to see when "full detection" of all 20 had been acheived. Last night, with version 1227 of the daily.cvd database, they were still......
  • How to Remove Personal Security | Personal Security Removal Guide Personal Security is a rogue antivirus application that comes from the same (dreaded) family as the Cyber Security rogue. It usually installs on the users computer without the permission of the computer user. Once installed on the system it will then perform supposed scans finding lots of virus infected files......
  • How to Remove TRE Antivirus | TRE Antivirus Removal Guide TRE Antivirus is a new entry in the Wini Family of rogue antivirus software. This family includes SoftCop (SoftCop Removal), Softsoldier (How to remove SoftSoldier), ( TrustFighter TrustFighter Removal Guide, TrustSoldier removal guide and the following others... SafeFighter (Safefighter Removal), TrustCop (TrustCop Removal Guide), SecureWarrior (SecureWarrior Removal), SecurityFighter (SecurityFighter Removal),......
Blog Traffic Exchange Related Websites
  • People of Prosper [pic] Prosper is diverse and outstandingly egalitarian. I am celebrating that diversity with a pictorial of credit worthy*** borrowers. Everyone of these borrowers has credit worthy of extending credit. Do these photos make you want to bid? Would you give them a loan?  Click any picture to be taken to......
  • Programmer and Blogger Seeks Credit Score Improvment Loan My Prosper Group is proud to present our 3rd listing (2nd endorsed listing)... This listing is attempting to put the social in social capital. The Penny Saved has been a known blogroll buddy of RateLadder for sometime. He asked me about this loan strategy about 2 months ago. This is......
  • Powerful Small Business Email Signatures Your emails are a potential source of income. Yes, even if you don't have a website or blog, and better still, using email signatures properly amounts to free advertising! If you run a small business, you probably send a fair few emails each week; messages to suppliers, customers, prospects, associates......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site