The hole’s been announced, the patch has been released. Now there’s nothing to do but wait for the worm to come and wreak its ugly havoc. “Sitting in a bunker, here behind my wall, waiting for the worms to come. In perfect isolation, here behind my wall, waiting for the worms to come.” Strangely apropos, this Pink Floyd lyric reflects the current mindset of many security-folk given the latest announcement of a critical vulnerability in most Microsoft Windows operating systems. The Last Stage of Delirium Research Group gave surprisingly little detail of a buffer-overflow condition in the RPC interface to DCOM, which listens by default on installations of Windows NT, Win2k, XP, and even Win2k3 Server. This thing has “worm” written all over it. In fact, I’ll go out on a limb now and make the call that we’ll be seeing worm activity exploiting this vulnerability by Christmas of this year. And though I won’t be the one to discover it, I’d like to take this opportunity to one-up the boyz at eEye and give this critter a name now: “Mescaline.” Full Story
About OODA Analyst
OODA is comprised of a unique team of international experts capable of providing advanced intelligence and analysis, strategy and planning support, risk and threat management, training, decision support, crisis response, and security services to global corporations and governments.