Printed from http://www.electronista.com

Windows zero-day Duqu exploit uses corrupt Word files

updated 05:15 pm EDT, Tue November 1, 2011

Microsoft confirms Duqu exploit in Word files

Microsoft on Tuesday confirmed that a Windows kernel vulnerability does indeed exist in Duqu malware and is working to patch it. The zero-day kernel exploit could allow hackers to remotely execute code in an infected system, CrySys and Symantec found. Duqu can be installed by modified Word documents and can potentially slip by.

Once opened, the malicious code is executed and installs the main Duqu program. The hackers can then spread Duqu to other computers on the network. Most security programs can detect and block Duqu, although Symantec revealed at least six unnamed organizations in several countries have already received the malware.

A full security bulletin from Microsoft that addresses the issue is expected to come very soon, although it's unclear how soon a patch will follow. [via WinRumors]



By Electronista Staff
toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

Follow us on Facebook

toggle

Most Popular

Advertisement

Recent Reviews

Samsung Galaxy S6 Edge

The Samsung Galaxy S6 range is a critical component in Samsung's flagging smartphone strategy. With sales of its high-end smartphones ...

Notti smart lamp from Witti

Perhaps you've already seen our review of the Dotti LED display from Witti Design. Meet Notti, Dotti's "sibling". Notti is a softball ...

Seagate Personal Cloud (2-Bay)

When it comes to backing up files, many users are now looking to the myriad of cloud storage solutions available. There is no doubt th ...

Advertisement

toggle

Most Commented

 
toggle

Popular News