CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
August 15th, 2008

Zero-day Microsoft Windows NSlookup.exe Vulnerability Exploited In The Wild

According to SecurityFocus, a new public zero-day Windows vulnerability is being exploited in the wild. Microsoft Windows is prone to a remote code-execution vulnerability due to an unspecified error in ‘NSlookup.exe’. Successfully exploiting this issue would allow the attacker to execute arbitrary code on an affected computer. Failed attacks will cause denial-of-service conditions. Microsoft Windows XP Professional SP2 is vulnerable; other versions and products may also be affected.

According to the alert, the issue is being actively exploited in the wild but details on the attacks are currently unavailable. At this moment there are no workarounds or vendor-supplied patches.

A video of a proof-of-concept exploit in action was released by Argentinian researcher Ivan Sanchez who is credited for this vulnerability disclosure.

Share this item with others:

More on CyberInsecure:
  • Critical Flash Player, Acrobat, Reader Vulnerability Exploited In The Wild
  • Record Number Of Vulnerabilities Fixed In Microsoft’s Patch Tuesday
  • Microsoft Patches Critical Database And Office Flaws
  • Microsoft Excel 0-day Code Execution Vulnerability Exploited In The Wild
  • Microsoft Releases Emergency Patch For Critical Windows Vulnerability

  • If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Zero-day Microsoft Windows NSlookup.exe Vulnerability Exploited In The Wild

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.