CVE-2010-2729 and Stuxnet

Posted: June 29, 2012 in Analysis, Vulnerabilities
Tags: , ,

June 24, 2012 is when Stuxnet’s replication mechanism leveraging CVE-2010-2729 is programmed to be deactivated. This means that that Stuxnet will no longer spread to USB keys using that vulnerability.

This is a welcome relief in the fight against the spread of the worm, even two years after the initial outbreak.  Users need to be aware that Stuxnet has not always taken advantage of the Windows Print Spooler Service vulnerability. Prior to March 2010, Stuxnet used a trick in Autorun in order to spread and this technique may still be used.

Reference:
http://technet.microsoft.com/en-us/security/bulletin/MS10-061
http://www.symantec.com/connect/blogs/stuxnet-lnk-file-vulnerability
https://www.securelist.com/en/blog/208193609/The_Day_The_Stuxnet_Died

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s