需要修復電腦?
聘請專家
Virus:EXP/CVE-2011-3402
Date discovered:03/11/2011
Type:Exploit
In the wild:Yes
Reported Infections:Low
Distribution Potential:Low
Damage Potential:Low
Static file:No
Engine version:8.02.06.108

 General Platforms / OS:
   • Windows XP
   • Windows 2003
    Windows Vista
    Windows Server 2008
    Windows 7


Side effects:
    Can be used to execute malicious code
   • Makes use of software vulnerability
CVE-2011-3402

 Special detection CVE-2011-3402

The exploit EXP/CVE-2011-3402 is targeting the True-Type-Font parsing engine which is run in kernel-mode. This fact makes this exploit very dangerous as an attacker can gain system level privileges.

An exploitation gives the attacker the ability to install programs/drivers, view, change, or delete data or he could create new accounts with full user rights.

In an e-mail scenario the exploit needs user interaction (for instance by opening a malicious word document) to get executed. The discovered exploit comes in the form of a Microsoft word document.

Other possibilities may include using embedded TTF fonts in other types of files such as PDF.


Version history:
     8.02.06.108   ( 07/11/2011 )

說明撰寫者 Andrei Gherman 開啟 2011年11月7日星期一
說明更新者 Andrei Gherman 開啟 2011年11月7日星期一

返回 . . . .
https:// 為了你的安全,此視窗已加密。