zero days | DataProtectionCenter.com

2013 First Quarter Zero-Day Vulnerabilities

23

Apr

2013

In the first quarter of 2013, we spotted quite a few zero-day vulnerabilities affecting Oracle Java, Adobe Flash, Adobe Reader, and Microsoft Internet Explorer being exploited in the wild. This blog discusses the details of these zero-days exploited to spread malware in the first quarter of 2013. Java zero-day vulnerabilitiesDuring the month of January 2013, we […]

Category General Written by Symantec Security Response Blog 0 Comments

Latest Java Zero-Day Shares Connections with Bit9 Security Incident

01

Mar

2013

Symantec recently received information on a new Java zero-day, Oracle Java Runtime Environment CVE-2013-1493 Remote Code Execution Vulnerability (CVE-2013-1493). The final payload in the attack consisted of a DLL file, detected by Symantec as Trojan.Naid, which connects to a command-and-control (C&C) server at 110.173.55.187. Interestingly, a Trojan.Naid sample was also signed by the compromised Bit9 certificate […]

Category General Written by Symantec Security Response Blog 0 Comments

Adobe Zero-day Used in LadyBoyle Attack

09

Feb

2013

Yesterday, Adobe released an out of cycle patch that fixed two zero-day vulnerabilities (CVE-2013-0633, CVE-2013-0634) for Adobe Flash Player 11.5.502.146 and earlier versions for both Windows and Macintosh. The patch was released because the zero-days were being actively exploited for attacks in the wild. Symantec recommends applying the patch immediately. Reports of the attack seen in […]

Category General Written by Symantec Security Response Blog 0 Comments

The Latest in IT Security

Posts Tagged ‘zero days’

2013 First Quarter Zero-Day Vulnerabilities

Latest Java Zero-Day Shares Connections with Bit9 Security Incident

Adobe Zero-day Used in LadyBoyle Attack

Categories

Featured

Archives

Latest Comments

About Us

Contact Us