Yes, your conclusion appears valid. But the contents of the article provide an even more enlightening comment:
*It is important to note that this attack worked only on computers with disabled DEP ( data execution prevention ). If you run this attack on computer with enabled DEP, the following message is displayed* *ASB **http://XeeMe.com/AndrewBaker* <http://xeeme.com/AndrewBaker>* **Providing Virtual CIO Services (IT Operations & Information Security) for the SMB market…*** On Thu, Mar 21, 2013 at 12:05 PM, David Lum <david....@nwea.org> wrote: > Am I correct in reading this page:**** > > > http://blog.avast.com/2013/03/19/analysis-of-chinese-attack-against-korean-banks/ > **** > > ** ** > > that “After further searching, we were able to determine that this attack > uses the CVE-2012-1889 ( > http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1889 ) > vulnerability, which allows a remote attacker via a crafted web site to > execute arbitrary code” **** > > ** ** > > where looking up **** > > CVE-2012-1889 points to > http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1889 which has a > link to remediation at > http://technet.microsoft.com/en-us/security/advisory/2719615 and thus > http://technet.microsoft.com/en-us/security/bulletin/ms12-043 that this > attack could have been prevented if MS12-043 had been applied? **** > > *David Lum* > Sr. Systems Engineer // NWEATM > Office 503.548.5229 //* *Cell (voice/text) 503.267.9764**** > > ** ** > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to listmana...@lyris.sunbeltsoftware.com > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
