Posted by Virus Bulletin on Dec 1, 2008
Exploit attack patches flaw once system penetrated.
A worm has been seen taking advantage of the vulnerability in Microsoft's Windows Server Service, patched out-of-cycle last month in the MS08-067 announcement.
The worm takes advantage of machines yet to be patched by tardy administrators, and once it is installed it proceeds to patch the vulnerability to prevent other malicious attacks from joining it on the victim system. Microsoft reports numerous attempts to exploit the flaw over the past month, but this latest worm is the most widespread and sophisticated.