Execution | DataProtectionCenter.com

W32.Morto.B – Morto Adds File Infection to its Arsenal

10

Jul

2012

W32.Morto first surfaced in August 2011 causing a stir when it targeted weak passwords on Remote Desktop Protocol Connections in order to propagate across networks. W32.Morto.B, the new variant, now has the ability to infect executable files on a compromised computer. Let’s take a look at the infected files in a bit more detail. Figure […]

Category General Written by Symantec Security Response Blog 0 Comments

Technical Analysis of CVE-2012-1889 Exploit HTML_EXPLOYT.AE Part 3

04

Jul

2012

As discussed in our previous blog entries, we’ve found an exploit (Trend Micro detection HTML_EXPLOYT.AE) that targets a vulnerability found in Microsoft XML Core Services (CVE-2012-1889). Based on our analysis, HTML_EXPLOYT.AE contains three key features: its usage of Microsoft XML Core Services, heap spray, and No ROP (Return-Oriented-Programming) function. Our two initial blog entries already […]

Category General Written by TrendLabs 0 Comments

Vulnerability in Microsoft XML Core Services Opens Door to Attackers

26

Jun

2012

Microsoft has issued a security advisory that describes a vulnerability in its XML module. McAfee has also observed that the vulnerability is being actively exploited in the wild. The vulnerability exists when the function “msxml3!_dispatchImpl::InvokeHelper” in Microsoft’s XML attempts to access an object in memory that has not been initialized, allowing attacker to execute arbitrary […]

Category General Written by Blog Central > McAfee Labs 0 Comments

The Latest in IT Security

Posts Tagged ‘Execution’

W32.Morto.B – Morto Adds File Infection to its Arsenal

Technical Analysis of CVE-2012-1889 Exploit HTML_EXPLOYT.AE Part 3

Vulnerability in Microsoft XML Core Services Opens Door to Attackers

Categories

Featured

Archives

Latest Comments

About Us

Contact Us