The Duqu trojan infects systems by exploiting a previously unknown Windows kernel vulnerability that is remotely executable.



From ComputerWorld:

The Duqu trojan infects systems by exploiting a previously unknown Windows kernel vulnerability that is remotely executable, security vendor Symantec said today.

Symantec said in a blog post that CrySys, the Hungarian research firm that discovered the Duqu Trojan earlier this month, has identified a dropper file that was used to infect systems with the malware.

  Update: Duqu exploits zero-day flaw in Windows kernel