Other | MyAntiSpyware - Part 4

MyAntiSpyware

BHO malware used IE vulnerability for install

Myantispyware team March 26, 2006 No Comment Exploits & Vulnerabilities

BHO malware used IE vulnerability for install. Sans reported There are several sites that have been compromised and now contain the exploit code. These sites all run the exploit code and get a file called ca.exe which in turn gets a file called calc.exe and installs it. It is calc.exe that we want to focus

Read more »
100 confirmed sites now using the IE vulnerability

Myantispyware team March 24, 2006 No Comment Exploits & Vulnerabilities

100 confirmed sites now using the IE vulnerability, as reported on security lists by Dan Hubbard (alert) at WebSense and Joe Stewart at Lurhq. These can be very nasty. SunBelt analysed one site – www(dot)textrum(dot)se (since shutdown): The exploit calls a file, updater.exe. It file is W32/Spybot (W32/Backdoor, Adware.NaviPromo.M) Norman sandbox report: Found Sandbox: W32/Backdoor;

Read more »
RealNetworks Products Multiple Buffer Overflow Vulnerabilities

Myantispyware team March 23, 2006 No Comment Critical patch, Exploits & Vulnerabilities

Some vulnerabilities have been reported in various RealNetworks products, which can be exploited by malicious people to compromise a user’s system. 1) A boundary error when processing SWF files can be exploited to cause a buffer overflow. This may allow execution of arbitrary code on the user’s system. 2) A boundary error within the handling

Read more »
New Internet Explorer vulnerability

Myantispyware team March 23, 2006 No Comment Exploits & Vulnerabilities

Secunia Research has discovered a vulnerability in Microsoft Internet Explorer, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to an error in the processing of the “createTextRange()” method call applied on a radio button control. This can be exploited by e.g. a malicious web site to

Read more »
New unpatched vulnerability in the Internet Explorer (mshtml.dll) found

Myantispyware team March 17, 2006 No Comment Exploits & Vulnerabilities

There is a new and unpatched vulnerability with exploit code in the wild that affects the latest version of IE. The exploit works by including an abnormally large (a couple thousand) number of script actions inside a single HTML tag. This vulnerability can be triggered by specifying more than a couple thousand script action handlers

Read more »
Multiple vulnerabilities have been identified in various Macromedia products

Myantispyware team March 15, 2006 No Comment Exploits & Vulnerabilities

Multiple vulnerabilities have been identified in various Macromedia products, which could be exploited by remote attackers to execute arbitrary commands. These flaws are due to unspecified errors when processing specially crafted SWF files. Affected Products Flash Player versions 8.0.22.0 and prior Breeze Meeting Add-In Version 5.1 and prior Shockwave Player version 10.1.0.11 and prior Flash

Read more »
Fake Windows Sites + WMF Explot + Keyloger = New Botnet

Myantispyware team March 13, 2006 No Comment Exploits & Vulnerabilities, Identity Theft, Worms

Adam Piggott of Proactive Computing received message from Microsoft. The email had a link to a supposed Windows update site, but, in fact, the link went to a site running the WMF exploit. On an unpatched Windows computer, the exploit hits immediately. Social engineering is also at work, urging users to click a link at

Read more »
SpyBot 2006-02-24 Update Available

Myantispyware team February 24, 2006 2 Comments Updates

Hijacker + CoolWWWSearch.Feat2Installer + CoolWWWSearch.Service + CoolWWWSearch.Feat2DLL + CoolWWWSearch + MaxSearch ++ Hyperlinker ++ SecureServicePack.BadBHO Malware ++ ADWareBazooka ++ HitVirus + Command Service ++ Smitfraud-C. (2) + Mailbot ++ SpyFalcon + MagicControl.Agent ++ Win32.Agent.acf ++ Win32.Agent.acr PUPS ++ SpyiBlock Spyware + Targetsaver ++ NiceSpy Trojan + PestTrap ++ Teslaplus.com Read more and download Free Anti

Read more »
Mac OS X File Association Meta Data Shell Script Execution

Myantispyware team February 23, 2006 No Comment Exploits & Vulnerabilities

Michael Lehn has discovered a vulnerability in Mac OS X, which can be exploited by malicious people to compromise a user’s system. The vulnerability is caused due to an error in the processing of file association meta data in ZIP archives (stored in the “__MACOSX” folder) and mail messages (defined via the AppleDouble MIME format).

Read more »
Multiple vulnerabilities in WinAmp – Affected all versions (including 5.13)

Myantispyware team February 19, 2006 No Comment Exploits & Vulnerabilities

Multiple vulnerabilities have been identified in Winamp, which could be exploited by remote attackers to take complete control of the affected system. The first flaw is due to a buffer overflow error when processing a specially crafted playlist containing an overly long media filename, which could be exploited by remote attackers to compromise a vulnerable

Read more »

Previous
1
2
3
4
5
…
9
10
Next