|31 Dec 2010||#1|
| || |
Targeted attacks against recently addressed Microsoft Office
Targeted attacks against recently addressed Microsoft Office vulnerability (CVE-2010-3333/MS10-087)
Last November, Microsoft released security bulletin MS10-087, which addresses a number of critical vulnerabilities in how Microsoft Office parses various office file formats. One of them is CVE-2010-3333, "RTF Stack Buffer Overflow Vulnerability," which could lead to remote code execution via specially crafted RTF data. A few days before Christmas, we received a new sample (sha1: cc47a73118c51b0d32fd88d48863afb1af7b2578) that reliably exploits this vulnerability and is able to execute malicious shellcode which downloads other malware.
|My System Specs|
|Similar help and support threads for2: Targeted attacks against recently addressed Microsoft Office|
|Recently patched Java flaw already targeted in mass attacks||Security News|
|Java zero day vulnerability actively used in targeted attacks||Security News|
|MacControl Trojan Being Used in Targeted Attacks Against OS X Users||Security News|
|Targeted domain controller attacks increase 150%||Security News|
|MSFT Confirms'Targeted attacks' against old unpatched IE vulnerability||Browsers & Mail|
|Targeted attacks - going beyond the technicalities Over 30,000 people||Security News|
|Microsoft Confirms Attacks Targeting Critical 0-Day Office Excel Vulnerability||Microsoft Office|
|Our Sites ||Site Links ||About Us ||Find Us |
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
All times are GMT -5. The time now is 01:16 PM.