Microsoft Security has uncovered an attack that is believed to be a Windows XP (Windows 2000/XP SP2) exploit.
Microsoft has released the exploit in the public domain.
The Windows XP exploit is the most recent Windows XP vulnerability that Microsoft has found to have been exploited in the wild.
Microsoft Security researchers say they found the exploit on a Windows Server 2003 server.
This is the first time the Microsoft Security team has publicly disclosed a Windows exploit that was not part of an exploit released by the company.
“The Windows XP bug was found by a team of Windows experts using the Microsoft Remote Desktop Service (RDP), Microsoft Windows PE, and Windows Server 2008 R2,” Microsoft Security noted.
“This discovery means that Windows XP has been used in a wide range of attacks, including denial-of-service, network denial of service, remote code execution, and a malicious remote code payload.”
The exploit was not discovered by Microsoft until this month, when it was discovered that the vulnerability was already being exploited.
The Microsoft Security Team said it is not the first Microsoft security vulnerability to have surfaced.
In January, researchers discovered a flaw in Microsoft Office that allowed an attacker to break into an Office file that contained sensitive personal information.