PCの修理が必要ですか?
専門家に頼む
Nume:EXP/CVE-2011-3402.B
Descoperit pe data de:05/12/2012
Tip:Exploit
ITW:Nu
Numar infectii raportate:Mediu
Potential de raspandire:Scazut
Potential de distrugere:Scazut
Fisier static:Nu
Marime:~ 4.201 Bytes
Versiune VDF:7.11.52.188 - miercuri, 5 decembrie 2012
Versiune IVDF:7.11.52.188 - miercuri, 5 decembrie 2012

 General Alias:
   •  Symantec: Trojan.Gen.2
   •  Kaspersky: Exploit.Win32.CVE-2011-3402.b
   •  Sophos: Troj/DexFont-A


Sistem de operare:
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Efecte secundare:
   • Poate fi utilizat pentru a executa cod malitios
   • Profita de vulnerabilitatile softului
      •  CVE-2011-3402

 Detectie speciala CVE-2011-3402

Descriere:
The exploit EXP/CVE-2011-3402 is targeting the True-Type-Font parsing engine which is run in kernel-mode. This fact makes this exploit very dangerous as an attacker can gain system level privileges.

An exploit gives the attacker the ability to install programs/drivers, view, change, or delete data or he could create new accounts with full user rights.

In an e-mail scenario the exploit needs user interaction (for instance by opening a malicious word document) to get executed. The discovered exploit comes in the form of a Microsoft word document.

Other possibilities may include using embedded TTF fonts in other types of files such as PDF.

説明の挿入者 Martin Muench の 2012年12月30日日曜日
説明の更新者 Martin Muench の 2012年12月30日日曜日

戻る . . . .
https:// このウィンドウは暗号化されています。