It is a malicious code used to exploit a vulnerability in the library WKSSVC.DLL on Windows XP/2000 computers. If successfully exploited, it allows arbitrary code to be executed in the vulnerable computer.

Windows XP/2000

WKSSVC is a malicious code used to exploit a vulnerability in the library WKSSVC.DLL on Windows XP/2000 computers.

If the target computer is vulnerable, WKSSVC allows arbitrary code to be executed in it.

Panda Security detects the code necessary for attempting to exploit the MS06-070 vulnerability as WKSSVC, thus warning users on a network traffic increase associated to this threat and preventing them from being affected.

If you have a Windows 2003/XP computer, it is recommendable to download and apply the security patch referred to the vulnerability in Workstation Service, which is included in the security bulletin MS06-070. Click here to access the web page for downloading the patch.

WKSSVC is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.