New WMF 0-Day Exploit
Mike writes over on the F-Secure "News from the Lab" Blog:
There's a new zero-day vulnerability related to Windows' image rendering - namely WMF files (Windows Metafiles). Trojan downloaders, available from unionseek[DOT]com, have been actively exploiting this vulnerability. Right now, fully patched Windows XP SP2 machines machines are vulnerable, with no known patch.
The exploit is currently being used to distribute the following threats:
- Trojan-Downloader.Win32.Agent.abs
- Trojan-Dropper.Win32.Small.zp
- Trojan.Win32.Small.ga
- Trojan.Win32.Small.ev.
Some of these install hoax anti-malware programs the likes of Avgold.
0 Comments:
Post a Comment
<< Home