Exploit Code Surfaces for Two MS Flaws
Security companies warned of two new exploits released for separate vulnerabilities that were patched by Microsoft earlier this month. Both the French Security Incident Response Team and Symantec warned of the issues in separate advisories on Monday.
The first deals with an issue in Windows DHCP client, with successful use of the exploit resulting in a potential system takeover risk. The second takes advantage of a hole in a Windows component known as "mailslot," however the exploit code may take advantage of a new variant, requiring Microsoft to update the patch.
Microsoft is researching the second flaw and said it may issue a updated patch if needed. However, in both cases, the Redmond company has not received any reports of attackers using the exploits to launch attacks. In any case, security experts advised taking the necessary precautions.
"Implement multiple redundant layers of security," Symantec said of the mailslot flaw. It also advised setting up systems that could detect possible malicious activity on the network. The security firm repeated the recommendations for the DHCP vulnerability.
For the July patches, a good deal of exploit code is widely available on the Internet, making it all the more important to ensure all patches are applied. Attacks using exploit code for two of the vulnerabilities was already in use prior to July's Patch Tuesday, and code for a new vulnerability within PowerPoint has since surfaced.
That flaw will be fixed August 8 as part of next month's Patch Tuesday.