CVE-2010-2729 and Stuxnet

Posted: June 29, 2012 in Analysis, Vulnerabilities
Tags: , ,

June 24, 2012 is when Stuxnet’s replication mechanism leveraging CVE-2010-2729 is programmed to be deactivated. This means that that Stuxnet will no longer spread to USB keys using that vulnerability.

This is a welcome relief in the fight against the spread of the worm, even two years after the initial outbreak.  Users need to be aware that Stuxnet has not always taken advantage of the Windows Print Spooler Service vulnerability. Prior to March 2010, Stuxnet used a trick in Autorun in order to spread and this technique may still be used.



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s