Before Java can release a patch for the recent zero-day exploit blogged by Sean earlier, Blackhole waltzes into the scene with an update. So the exploit kit users can now avail of the latest BH with the new zero-day exploit (CVE-2012-4681).
I wonder if this will actually put a spike on Blackhole sales.
The authors seem to be in such a hurry that they can’t think of new names anymore:
There being no latest patch against this, the only solution is to totally disable Java. Since this is the most successful exploit kit + zero-day… que horror. Please, for the love of your computer disable Java on your browser.
Jar is detected as Exploit:W32/CVE-2012-4681.A (sha1: 15fde2d50fc5436aa73f3fd6b065f490259a30fd).
Karmina and Timo
Leave a reply