The Windows error code appears

The malicious code has the ability to attack two serious security flaws in Windows that Microsoft has revealed that have begun to appear on the Internet.

A hacker named " cocoruder " posted the malicious code on the Internet via the website Milw0rmWeb . The main goal of the malware is the two potential security vulnerabilities that threaten to explode with a new worm in Windows.

Information about these two security flaws has been revealed by Microsoft in the November security update, released on November 14th.

The Milw0rm code contains complete information and specific instructions for organizing a deep computer attack on systems running Windows 2000 that have not installed the MS06-070 patch.

Amol Sarwate - Qualys' s director of security flaw research - recommends that Windows 2000 users should quickly check the system and install patches as quickly as possible because those security flaws can be exploited. Remote without any interaction from the user.

Security firm Immunity claims to have successfully developed the code that can attack both security flaws in the English version of the Windows operating system. Testing this code is also successful with Windows 2000 SP3 and SP4 versions.

Since Microsoft released the security update in November, Immunity has released a total of 6 code snippets that are able to attack patched security bugs. Even on November 13, Immunity released a code that could attack the Microsoft XML Core Services 4.0 security bug.

Security researcher of Immunity, Kostya Kortchinsky, said his firm also deciphered Microsoft patches to create an error-prone code that allowed executing binary code on Windows XP SP2 operating systems.

Security experts recommend users to quickly install patches as soon as possible.

Hoang Dung