I posted this on a couple forums I frequent and thought I would also post it here. While I run Windows servers I keep up with all web server security. As an admin I couldn’t afford not too.
I am sure most of you by now know there is a LKM (Loadable Kernel Module) exploit that is nasty and hard as heck to clean.
Read this thread at Webhosting Talk. Make sure you read it through as there is a users there that has investigated several boxes.
Now it seems this problem is not easily fixable yet it is very easy for your server to be infected if you are targeted.
The vulnerable lie in these components and software
The first 4 are directly related to IE and were patched a while ago. Although patched some people don’t keep up so they’ll get infected.
I’m not familiar with AOL SuperBuddy so I don’t know if it is patched.
The QuickTime exploit is new as of Jan. 10TH and the alert was revised today, Jan 18TH. and affects the QuickTime Updater as well as Qucktime.
I hope no one that reads this is exploited.