Please wait while the page is being loaded Skip this advertisement >
Sunday | 7 September, 2008
ARN
Symantec: Microsoft Access ActiveX attacks will intensify
An easy-to-use toolkit used to hack computers has now been updated to take advantage of an unpatched security vulnerability in Microsoft's software.
Jeremy Kirk (IDG News Service) 15 July, 2008 08:49:33

ARN Directory | Distributors relevant to this article
ACA Pacific , Also Technology , Altech Computers , ASI Solutions , Cellnet , Compucon Computers , Computergate , EDsys Computers , Express Data , Express Online , HYKA , Impact Systems Technology , Infortech Distribution , Ingram Micro Australia , LDS International , Leader Computers , Leading Pacific Australia , Lynx Technologies , Simms International , SLI-Consulting , Synnex Australia , Topstar Computer International , Unixpac , Westan , XiT Distribution , Xpress I.T.
ARN Directory | Vendors relevant to this article
Symantec
Additional Resources
ARN Library
white paper Click here for case studies, whitepapers and other useful vendor content

Newsletter Subscription

Sign up for our ARN newsletters!
The premier provider of daily news to the IT channel, covering business, technology, products, and services.
If you have an interest in consumer electronics, tune into Retail for all the latest market developments.
RSS Feeds

An easy-to-use toolkit used to hack computers has now been updated to take advantage of an unpatched security vulnerability in Microsoft's software, which could mean attacks will intensify, according to vendor Symantec.

The Neosploit toolkit is one of several on the Internet that can be used by less-technical hackers to compromise machines. Symantec said it has detected on its network of Internet sensors that Neosploit can take advantage of a vulnerability revealed early last week in Microsoft's Access database program.

"Further analysis of these honeypot compromises has revealed that the exploit has been added to a variant of the Neosploit exploit kit, it will very likely reach a larger number of victims," according to an entry on the company's ThreatCon advisory board.

Microsoft hasn't patched the bug yet, and the company just issued its patches for the month on July 8. The vulnerability is within the Snapshot Viewer ActiveX control, which launches a viewer for Microsoft Access reports that doesn't require running the Access software itself.

The vulnerability poses a special danger since the ActiveX control is digitally signed by Microsoft, which means that people who have Internet Explorer configured to trust ActiveX controls with that designation would run it automatically if encountered on a Web page.

Some of the Web pages that have already been hacked with automated SQL injection attacks earlier this year are also hosting the Microsoft Acess attack, according to Symantec's Sean Hittel.

"As is the case with most of these ActiveX attacks, they are being served by traditional Web sites that have themselves fallen victim to automated SQL injection attacks," Hittel wrote on a Symantec forum. "In the past, we have seen government, commercial, and hobby sites fall victim to these SQL injection attacks and subsequently begin serving exploits to each of their visitors."

The problematic viewer accompanies all supported versions of Microsoft Office Access except Microsoft Access 2007,

Microsoft has offered suggestions in a security advisory to prevent attacks until a patch is available.

ARN Directory | Distributors relevant to this article
ACA Pacific , Also Technology , Altech Computers , ASI Solutions , Cellnet , Compucon Computers , Computergate , EDsys Computers , Express Data , Express Online , HYKA , Impact Systems Technology , Infortech Distribution , Ingram Micro Australia , LDS International , Leader Computers , Leading Pacific Australia , Lynx Technologies , Simms International , SLI-Consulting , Synnex Australia , Topstar Computer International , Unixpac , Westan , XiT Distribution , Xpress I.T.
ARN Directory | Vendors relevant to this article
Symantec
Market Place
Whatever your application, Eaton is your one-stop partner for your power protection needs.
Worry-Free™ Business Security Advanced - Safer, smarter and simpler security.
Find out how to win an IPod Touch with ARN.
Whatever your application, Eaton is your one-stop partner for your power protection needs.
Download this report and sell disaster recovery more effectively.

ARN Member Login

 
Panel Sessions

  • ARN Panel Sessions: Day 3

    The last of our panel sessions recorded live at CeBIT 2008. Today, the topic is storage. Data is growing at an enormous rate, so what does the future hold?

Play
See all Panel Sessions videos >>
ARN news
Play
See all news >>
Channel Watch

  • Brian's bloopers

    It takes a long time to produce an episode of Channel Watch. Maybe you'll understand why after watching this...

Play
See all Channel Watch videos >>
Business Continuity & Disaster Recovery Zone

When an IT disaster occurs, how handy it would be to push a button and start again as if nothing had happened.
Discover and learn more about CA XOSoft today.
ARN Vendor Directory
 
Find vendors by name | Find by category
ARN Library
Microsoft® takes legal action against software pirates

Read Material

Microsoft® takes legal action against software pirates

Recently Microsoft took legal action against individuals and resellers for distributing and selling unauthorised Microsoft software.

Sponsored Links