VB Migration

Tag: exploit

  • Macs under attack from trojan double whammy

    Two new threats in a week spark worries of approaching Mac malware era. Users of Apple Mac systems, who have so far only suffered from minimal attention from malware creators, may need to take more care in future according to some security analysts, after the exposure of a significant vulnerability in the operating system and…

  • Bumper Patch Tuesday short of one patch

    Excel remains vulnerable as expected fix is dropped. Microsoft has issued its monthly ‘Patch Tuesday’ set of security updates, with a larger than usual crop of patches for a variety of products, including several for the Office range and Internet Explorer browser. However, one significant patch – for a vulnerability in Excel – was withdrawn…

  • More PDF exploits seen in wild

    Adobe Reader and Acrobat flaws open way for further document attacks. A string of vulnerabilities in Adobe ‘s PDF viewing and editing software, disclosed late last week by Adobe and iDefense , have been exploited by malicious attacks using PDF files to launch malware. The flaws, which include several buffer overflows, a library path vulnerability…

  • Yahoo! jukebox flaw exploits in wild

    Zero day vulnerability in music system rapidly targeted. Vulnerabilities in Yahoo! Jukebox , a free music-management system provided by Yahoo! , have been exploited by in-the-wild attacks just days after flaws were first disclosed. Two separate buffer overflow issues in ActiveX controls used by the system were reported on February 2nd and 5th, and attacks…

  • Four IE bugs fixed by Patch Tuesday release

    Seven updates, three critical in monthly security update. Microsoft has released its monthly ‘Patch Tuesday’ security bulletin, featuring seven updates of which three are marked ‘critical’ and cover flaws which could allow remote execution of code if exploited on vulnerable systems. The critical issues are with DirectX , Windows Media Format and Internet Explorer ,…

  • Grisoft acquires Exploit Prevention Labs

    AVG to incorporate LinkScanner in further consolidation of security offerings. Grisoft , developer of the AVG security product whose free version is widely deployed on home-user desktops, has announced the acquisition of Exploit Prevention Labs , a small firm whose headline product LinkScanner focuses on detecting exploit attempts in web pages before they are visited.…

  • Two fixes released on lightweight Patch Tuesday

    Monthly security update covers just couple of dangers. Microsoft has released its monthly ‘Patch Tuesday’ security bulletin, with only two patches issued, one rated ‘Important’ and the other ‘critical’. The more serious flaw, a problem with URI validation, has been publicly disclosed and can be used to remotely compromise a system. While exploitation methods have…

  • PDF trojan exploits Adobe flaw

    Reader/Acrobat vulnerability targeted day after patch release. A vulnerability in Adobe ‘s popular PDF-viewing software Adobe Reader and editing suite Acrobat , first reported a month ago , was patched on Monday in an update released two weeks after the company issued a workaround to minimise exposure. The following day, PDFs containing exploits for the…

  • RealPlayer zero-day flaw exploited

    Manufacturer responds rapidly to serious security hole. A zero-day vulnerability in the popular media playing system RealPlayer was spotted being exploited in the wild late last week, with several trojans penetrating vulnerable systems from malicious websites in silent drive-by downloads. The flaw is in a piece of code previously exploited to cause denial of service,…

  • Word for Mac exploit spotted

    Patch Tuesday flaw targeted by vulnerability. A vulnerability in the Apple Mac version of Microsoft Word , covered by a patch in this month’s Patch Tuesday security update, has been subject of an attempted exploit seen by researchers at Symantec . The exploit document was observed to crash most versions of Word on Windows ,…