Malicious code to exploit a component of the Microsoft Windows ASN.1 vulnerability is circulating, prompting security experts to issue a chilling warning: a Blaster-type virus attack is imminent. The exploit code, specifically created to target a buffer overflow flaw in Microsoft’s implementation of the Abstract Syntax Notation 1 (ASN.1) data standard could cause immediate denial-of-service […]
Malicious code to exploit a component of the Microsoft Windows ASN.1 vulnerability is circulating, prompting security experts to issue a chilling warning: a Blaster-type virus attack is imminent.
The exploit code, specifically created to target a buffer overflow flaw in Microsoft’s implementation of the Abstract Syntax Notation 1 (ASN.1) data standard could cause immediate denial-of-service attacks
“A virus attack will happen and it will happen very soon. It’s not a matter of if, but when,” warned Gartner security analyst John Pescatore. “This is a very dangerous vulnerability. It is pretty easy to exploit and once the bad guys get their hands on an exploit, we will see an attack.”
Microsoft has already issued a patch with a “critical” rating (download location here) and with a warning that a successful exploit would allow an attacker to install programs, view data, change data, delete data, or create new user accounts with full privileges.
That level of system takeover was last seen when the MSBlast (Blaster) virus started spreading last summer, hammering corporate networks, e-mail servers and snarling ISP traffic around the world.
The latest ASN.1 exploit, which has been seen by internetnews.com
on several underground Web sites, is programmed to crash the Microsoft Local Security Authority Subsystem process, LSASS.exe. After crashing LSASS.exe, the code causes infected systems to reboot at one minute intervals.
The exploit code can be launched via server message blocks or the NetBIOS file sharing protocols to PCs via ports 445 or 139. An IT administrator who tested the exploit code reported that it was able to take down an unpatched Windows 2000 system. It did not work on Windows XP or Windows Server 2003 but experts say a skilled attacker could tweak the code to target the flaw in those operating systems.
The Microsoft vulnerability affects Windows NT 4.0, Windows NT Server 4.0 Terminal Server Edition, Windows 2000, Windows XP and Windows Server 2003.
The exploit code in circulation is set only to cause denial-of-service scenarios but could be used as a blueprint for more serious exploits like the hijacking on unpatched systems.
As a workaround, Windows users are urged to block untrusted access to ports 445 and 439 and immediately install the available ASN.1 fix.
Ken Dunham, director of malicious code at research firm iDefense, said the exploit code “compiles rather easily” and is fully functional as a DoS tool.
“The threat index for ASN.1 attacks has just gone up significantly. This new exploit code serves as a template for attackers who want to gain remote access to vulnerable computers, infect them with Trojans, or create a bot or worm,” Dunham warned.
The ASN.1 standard is used by many applications and devices in the
technology industry to allow the normalization and understanding of data across various platforms.
Ethics and Artificial Intelligence: Driving Greater Equality
FEATURE | By James Maguire,
December 16, 2020
AI vs. Machine Learning vs. Deep Learning
FEATURE | By Cynthia Harvey,
December 11, 2020
Huawei’s AI Update: Things Are Moving Faster Than We Think
FEATURE | By Rob Enderle,
December 04, 2020
Keeping Machine Learning Algorithms Honest in the ‘Ethics-First’ Era
ARTIFICIAL INTELLIGENCE | By Guest Author,
November 18, 2020
Key Trends in Chatbots and RPA
FEATURE | By Guest Author,
November 10, 2020
FEATURE | By Samuel Greengard,
November 05, 2020
ARTIFICIAL INTELLIGENCE | By Guest Author,
November 02, 2020
How Intel’s Work With Autonomous Cars Could Redefine General Purpose AI
ARTIFICIAL INTELLIGENCE | By Rob Enderle,
October 29, 2020
Dell Technologies World: Weaving Together Human And Machine Interaction For AI And Robotics
ARTIFICIAL INTELLIGENCE | By Rob Enderle,
October 23, 2020
The Super Moderator, or How IBM Project Debater Could Save Social Media
FEATURE | By Rob Enderle,
October 16, 2020
FEATURE | By Cynthia Harvey,
October 07, 2020
ARTIFICIAL INTELLIGENCE | By Guest Author,
October 05, 2020
CIOs Discuss the Promise of AI and Data Science
FEATURE | By Guest Author,
September 25, 2020
Microsoft Is Building An AI Product That Could Predict The Future
FEATURE | By Rob Enderle,
September 25, 2020
Top 10 Machine Learning Companies 2021
FEATURE | By Cynthia Harvey,
September 22, 2020
NVIDIA and ARM: Massively Changing The AI Landscape
ARTIFICIAL INTELLIGENCE | By Rob Enderle,
September 18, 2020
Continuous Intelligence: Expert Discussion [Video and Podcast]
ARTIFICIAL INTELLIGENCE | By James Maguire,
September 14, 2020
Artificial Intelligence: Governance and Ethics [Video]
ARTIFICIAL INTELLIGENCE | By James Maguire,
September 13, 2020
IBM Watson At The US Open: Showcasing The Power Of A Mature Enterprise-Class AI
FEATURE | By Rob Enderle,
September 11, 2020
Artificial Intelligence: Perception vs. Reality
FEATURE | By James Maguire,
September 09, 2020
Datamation is the leading industry resource for B2B data professionals and technology buyers. Datamation's focus is on providing insight into the latest trends and innovation in AI, data security, big data, and more, along with in-depth product recommendations and comparisons. More than 1.7M users gain insight and guidance from Datamation every year.
Property of TechnologyAdvice. © 2025 TechnologyAdvice. All Rights Reserved
Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.
