In previous posts, we have talked about tools to create malware, like Constructor/Turkojan, Constructor/Wormer and Constructor/YFakeCreator.And we have recently detected a new version of these malicious tools called Constructor/BitTera.C.This type of tools are very easy to use, they have an interface in which you ...
Yesterday Microsoft published a new advisory related to a vulnerability in Microsoft Office PowerPoint, which could allow remote code execution.In the following image, you can see the versions affected by this vulnerability:This vulnerability affects Windows and Mac Microsoft Office ...
Microsoft recently announced a new vulnerability in certain versions of its Internet Explorer web browser. If exploited, the vulnerability (CVE 2010-0249) can allow remote code execution.Announcement of this vulnerability follows on the heels of last week's targeted zero-day attacks against a number of companies....
A new exploit targeting Internet Explorer was published to the BugTraq mailing list yesterday. Symantec has conducted further tests and confirmed that it affects Internet Explorer versions 6 and 7 as well. The exploit currently exhibits signs of poor reliability, but we expect that a fully-functional reliable exploit will ...
The Fragus exploit pack showed up on our radar a few months ago and has been steadily growing to become one of the most prevalent exploit packs being seen in the wild today by Symantec. It is similar to other popular exploit packs available—such as Unique, YES, Eleonore, and Liberty—but ...
In previous posts, we have talked about tools to create malware, like Constructor/Turkojan, Constructor/Wormer and Constructor/YFakeCreator.And we have recently detected a new version of these malicious tools called Constructor/BitTera.C.This type of tools are very easy to use, they have an interface in which you ...
Yesterday Microsoft published a new advisory related to a vulnerability in Microsoft Office PowerPoint, which could allow remote code execution.In the following image, you can see the versions affected by this vulnerability:This vulnerability affects Windows and Mac Microsoft Office ...
Microsoft recently announced a new vulnerability in certain versions of its Internet Explorer web browser. If exploited, the vulnerability (CVE 2010-0249) can allow remote code execution.Announcement of this vulnerability follows on the heels of last week's targeted zero-day attacks against a number of companies....
A new exploit targeting Internet Explorer was published to the BugTraq mailing list yesterday. Symantec has conducted further tests and confirmed that it affects Internet Explorer versions 6 and 7 as well. The exploit currently exhibits signs of poor reliability, but we expect that a fully-functional reliable exploit will ...
The Fragus exploit pack showed up on our radar a few months ago and has been steadily growing to become one of the most prevalent exploit packs being seen in the wild today by Symantec. It is similar to other popular exploit packs available—such as Unique, YES, Eleonore, and Liberty—but ...
As humans beings, we tend to be a bit lazy, at least in most of the cases. And cybercriminals are human beings, and therefore, lazy :)My colleage Andrew Chang (AhnLab) has sent me a MS10-002 Exploit Constructor they've found out in a Chinese underground web site. When you run it, ...
Read the original story
