Posts Tagged ‘windows kernel’

CVE-2012-1876: Recent update to the Cool Exploit Kit landing page

May

2013

A recently debuted exploit kit (EK), called “Cool EK,” and detected by us with the name Exploit:JS/Coolex, has been known to include various exploits targeting Oracle JRE, Adobe Reader, Adobe Flash Player to Windows kernel-mode drivers. If you’re unlucky enough to visit a webpage that hosts Cool EK, you might encounter all these exploits in […]

Category General Written by Microsoft Malware Protection Center 0 Comments

Microsoft Patch Tuesday – November 2012

Nov

2012

Hello, welcome to this month’s blog on the Microsoft patch release. This month the vendor is releasing six bulletins covering a total of 19 vulnerabilities. Seven of this month’s issues are rated ‘Critical’.As always, customers are advised to follow these security best practices: Install vendor patches as soon as they are available. Run all software […]

Category General Written by Symantec Security Response Blog 0 Comments

Backdoor.Proxybox: Kernel File System Hooking

Aug

2012

A low level file system driver was bundled with the latest version of Backdoor.Proxybox named “rxsupply”. The malicious driver was designed to deny access to the files used by the malware in order to improve persistence on compromised computers. The driver functionality and methods used for hooking kernel file system access are described below. Figure 1. […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘windows kernel’

CVE-2012-1876: Recent update to the Cool Exploit Kit landing page

Microsoft Patch Tuesday – November 2012

Backdoor.Proxybox: Kernel File System Hooking

Categories

Featured

Archives

Latest Comments

About Us

Contact Us