SecurityRatty: tag: exploit

Massive RealPlayer Exploit Embedded Attack

2008-01-07 18:58:52 by HASH0x89c7e1c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...exploit before the vulnerability became public One of our readers noted that there are a number of state government and educational sites that appear to have been compromised with the uc8010 domain. Upon review, I see that some of these have already been cleaned up. However, the .gov and .edu sites are only a few of the many many sites...

Tags: exploit, realplayer exploit, uc8010 domain, domain, uc8010, exact exploit, attack uc8010, malware, malware exploitation kits

The Neosploit Malware Kit Updated with Snapshot ActiveX Exploit

2008-07-15 17:18:32 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...exploit within a (random) copy of a popular web malware exploitation kit? Now that's interesting given that there are other modified versions of the publicly available malware kit empowered with exploits as they get released, the single most logical move a administrator of such kit would do is diversity the exploits set as often as possible,...

Tags: neosploit malware kit, malware kit, nuclear malware kit, kit, metaphisher malware kit, icepack malware kit, nuclear grabber kit, apophis kit, neosploit exploit kit

MDAC ActiveX Code Execution Exploit Still in the Wild

2007-12-05 12:08:56 by HASH0x89e6630 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge

...exploiting CVE-2006-0003 , and despite that it was patched in 11 April, 2006, the last quarter of 2007 showcased the malware authors simplistic assumption that outdated but unpatched vulnerabilities can be just as effective as zero day ones, and when the assumption proved to be true -- take Storm Worm's use of outdated vulnerabilities as the...

Tags: exploit, day, day vulnerabilities, htm, malware, malware exploitation kit, single exploit urls, vulnerabilities, storm worm apparently

Automatic Patch-Based Exploit Generation is Possible: Techniques and Implications

2008-04-28 15:41:41 by Editor in Help Net Security - Articles

The automatic patch-based exploit generation problem is: given a program P and a patched version of the program P', automatically generate an exploit for the potentially unknown vulnerability present

Tags: exploit generation, exploit, unknown vulnerability, automatic, program, version

America's Dilemma: Close Security Holes, or Exploit Them Ourselves

2008-05-01 04:00:00 by Bruce Schneier in Wired Security

...exploit the same vulnerabilities and use the same techniques as criminal attacks against corporate networks. Internet worms make the jump to physically-separate classified military networks in less than 24 hours, even if those networks are physically separate. The Navy Cyber Defense Operations Command uses the same tools against the same...

Tags: security, bad guys insecure, guys, non-security, security improves, technologies, dual-use technologies, security improvements, agency

New DNS exploit now in the wild and having a blast

2008-07-27 05:00:12 by Editor in Digg / Security

A new hack designed to exploit a weakness in the DNS protocol is out, just days after information on the exploit was accidentally posted online. A patch for the issue was released almost two weeks ago, but a significant number of servers are still vulnerable

Tags: exploit, weeks ago, dns protocol, weakness, information, issue, online, days, hack

Months-old Excel exploit goes public

2008-03-24 13:00:00 by Editor in Computerworld Security News

An exploit that targets a flaw in multiple versions of Microsoft's Excel software is now widely available, prompting Symantec to urge customers to apply a fix for the vulnerability released last week

Tags: exploit, multiple versions, urge customers, excel software, targets, symantec, widely, week, fix

Office exploit hits the street

2008-03-31 13:00:00 by Editor in Computerworld Security News

The exploit takes advantage of one of two flaws fixed by Microsoft in a recent security update

Tags: exploit takes advantage, recent security, flaws fixed, microsoft

New exploit targets corporate CA users

2008-04-01 00:00:00 by HASH0x8473a3c in Network World on Security

An exploit specifically targeting corporate Computer Associates users has been created some three weeks after a critical vulnerability was identified

Tags: exploit, users, critical vulnerability, computer, weeks

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo