A vulnerability in Windows XP and Windows Server 2003 that is not a poem, it is actively exploited to 28 different embassies in an unknown city in the Middle East to attack. It is unclear whether the attack was successful.
The attackers sent the exploit in an attachment of an e-mail to the 28 embassies, writes security firm Trend Micro. It is unknown to which embassies the go or in which city they stand. Trend Micro just want to say that it’s going to embassies in a city in the Middle East. The subject line of the e-mail and the attachment referred to the conflict in Syria, to the recipients of the e-mail to entice the e-mail to open.
Trend Micro says that it does not know whether the attacks on the embassies were successful. Earlier, it was already revealed that the vulnerability in XP, at the end of november all came to light, but where still no patch for it, in the wild being abused. It comes to an elevation of privilege, enabling an attacker who has already penetrated a system administrator can get.
FireEye, another security company, discovered earlier that the vulnerability along with a bug in Adobe Reader is being exploited. That bug makes it possible to use a rogue pdf code on a system. Together with the vulnerability in XP can an attacker remote code as system administrator, run.
Incidentally, is the bug in Adobe Reader is already a poem, making someone that Adobe Reader has been updated, not for that specific attack is vulnerable. Microsoft ends in april, the support of Windows XP; security issues if these are not corrected. The company pressed businesses and consumers on the heart to upgrade.
