SkiifGeek's Journal: Windows (Update) - Remote Hacker Automatic Control

-- Products Affected --
        Windows 2000, XP, 2003

        -- Technical Description --
        Sample exploit code for the Workstation service vulnerability patched by MS06-070 has begun circulating. Mitigating the effect of the current code is the necessity to have an accurate IP and Domain Name. Code samples have been distributed to Sûnnet Beskerming technical partners to assist with the development of effective protection mechanisms.

        -- Description --
        Well-developed exploit code that targets the vulnerability patched by MS06-070 (released November 14), and which was initially targeted at the Chinese version of Windows, has begun circulating amongst various websites and security mailing lists. The rapid spread of the code suggests strong interest from developers and researchers keen to better understand the vulnerability mechanism. Worryingly for end users, this particular vulnerability can be targeted through remote attack, and can easily lead to serious compromise of networks and systems.

        -- Recommended Action --
        Apply MS06-070 as soon as possible

        -- Source --
        Multiple Sources

        -- Threat Matrix --
                        U O
        Home User 10 10 (Highly Critical)
        Corporate 10 10 (Highly Critical)