DLL Hack Reemerges
There's an old hack that attacks apps that have hooks to Dynamic Link Libraries (DLL) but don't actually invoke a specific path. Hackers can use these badly written hooks to load malware in place of the DLL upon remote servers.
Microsoft recently alerted customers to the fact that hackers are once again exploiting these flaws, and Redmond actually has some new workarounds, including disabling "TCP ports 139 and 445 at the firewall."
Posted by Doug Barney on 08/27/2010 at 1:18 PM