Posts Tagged ‘heap’

Analyzing the First ROP-Only, Sandbox-Escaping PDF Exploit

Feb

2013

The winter of 2013 seems to be “zero-day” season. Right after my colleague Haifei Li analyzed the powerful Flash zero day last week, Adobe sent a security alert for another zero-day attack targeting the latest (and earlier) versions of Adobe Reader. Unlike Internet Explorer zero-day exploits that we have seen in the past, this Reader […]

Category General Written by Blog Central > McAfee Labs 0 Comments

The CVE-2012-4792 and the “spear phishing” Rotary domains – part 2

Feb

2013

In the previous part of our report, we analyzed the malicious content detected in the domain "rotary-eclubtw.com". We detected the exploitation code for the vulnerability CVE-2012-4792 and analyzed the Flash file which was used to contain the heap spray code and the shell code. In this part we are going to show some of the details that […]

Category Security Written by Websense 0 Comments

A Dive into the Water Hole

Jan

2013

Today, let’s get our hands dirty by analyzing an “interesting” sample that I found in-the-wild earlier today. There are multiple interesting parts of this sample; the first one is that they don’t really hide/obfuscate their stuff. They left it in plain text, and exposed the contents of their server. (By accident, I think.)Let’s move to […]

Category Security Written by Blue Coat 0 Comments

The Latest in IT Security

Posts Tagged ‘heap’

Analyzing the First ROP-Only, Sandbox-Escaping PDF Exploit

The CVE-2012-4792 and the “spear phishing” Rotary domains – part 2

A Dive into the Water Hole

Categories

Featured

Archives

Latest Comments

About Us

Contact Us