The Latest in IT Security

Posts Tagged ‘shellcode’

PDF Malware Writers Keep Targeting Vulnerability

22
Feb
2012

We keep seeing new waves of PDF file-based attacks that exploit the Adobe Acrobat and Reader CVE-2010-0188 Remote Code Execution Vulnerability (BID 38195) that exists in certain unpatched versions of a popular PDF reading application. All these attacks were stopped by Symantec’s Skeptic™ technology.  A typical example of such an exploited PDF sample contains highly […]

Category General Written by Symantec Security Response Blog 0 Comments

Read more ...

x64 Windows Shellcode

03
Feb
2012

Last year I found great x64 shellcode for Windows on McDermott’s site. Not only is it dynamic (lookup API addresses), but it even handles forwarded functions.But it’s written for MASM, and I prefer to use NASM. Hence I translated it, but also normalized it to adhere to the x64 calling convention and fixed a bug […]

Category Security Written by Didier Stevens 0 Comments

Read more ...

MIDI Files – Mid-Way to Infection

01
Feb
2012

Microsoft’s January patch MS12-004 addressed a few vulnerabilities in Windows Media components. One particular issue, CVE-2012-0003, can be exploited via Windows Media Player ActiveX, as it leverages a heap overflow occurring in ‘midiOutPlayNextPolyEvent’ function within the Windows Multimedia Library, winmm.dll. The bad guys didn’t waste time and this vulnerability is now exploited in the wild […]

Category Security Written by M86 Security Labs Blog 0 Comments

Read more ...

« Older Entries
Newer Entries »

Categories

FRIDAY, JUNE 06, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments