Additionally, Internet Storm Center announced an inquiry about the oldest infected .WMF file on 4th January;
http://isc.sans.org/diary.php?storyid=1015
Unfortunately, there was nothing to publish as a summary at their Diary page. Conclusion: There was no information about affected sites before this Bugtraq posting mentioned at the news.
The origin of the exploit code at Russian language sites slowed up the discovery as well. You can find e.g. Japanese or Korean Web sites including title 'New phpBB exploit' or whatever, but you have no any information about the nature of the writing due to missing Japanese skills. Security companies need more personnel understanding non-English languages.
http://isc.sans.org/diary.php?storyid=1015
Unfortunately, there was nothing to publish as a summary at their Diary page. Conclusion: There was no information about affected sites before this Bugtraq posting mentioned at the news.
The origin of the exploit code at Russian language sites slowed up the discovery as well. You can find e.g. Japanese or Korean Web sites including title 'New phpBB exploit' or whatever, but you have no any information about the nature of the writing due to missing Japanese skills. Security companies need more personnel understanding non-English languages.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/newsbriefs/126/528#528