Microsoft has freed a Fix-it tool to permit Windows users to manually plot their systems to thwart the Duqu Trojan: Microsoft Protection Advisory (2639658).


Duqu, or "son of Stuxnet" as few call it, is worrisome because it set up a keystroke logger and then can repeat itself, still across protect networks, utilizing the passwords obtained. It communicates with other servers across the net, giving hackers access. The malware will get rid of itself latetr 30 days.


In its Security consultive, Microsoft affirmed that it is assuring attacks in the wild, but downplayed the affect. The consultive told, "Microsoft is investigating a exposure in a Microsoft Windows element, the Win32k TrueType font parsing engine. An attacker who successfully exploited this vulnerability could function arbitrary code in kernel manner. The attacker could then set up programs; show, alter, or remove information; or make new accounts with complete user rights. We are cognizants of pointed attacks that test to utilize the reported vulnerability; overall, we see low customer affects on that time. This vulnerability is associated to the Duqu malware."


However, Microsoft did free a "Fix-it" tool that permits IT professionals to manually disable the code with the hole in their systems. It does have few drawbacks in that, "apps that trust on planteds font technology will go wrong to show correctly," Microsoft warns. Extra, IT professionals can too manually function the set up by insertings in a serials of commands at an administrative prompt. The Fix-It is for entire variations of Windows. Here is a connect to it. The manual commands are in build through Microsoft's Security Advisory, below "Workarounds."


Microsoft is even investigating if it will too free a plot. If so, this plot is not recently scheduled to be component of Tuesday's batch.