13 matches found
Modified Zyklon and plugins from India
IntroductionStreams of malicious emails Talos inspects every day usually consist of active spamming campaigns for various ransomware families, phishing campaigns and the common malware family suspects such as banking Trojans and bots.. It is however often more interesting to analyze campaigns...
Office”combination”formula exploits the sample analysis-vulnerability warning-the black bar safety net
by hcl, nine8 of code audit labs of vulnhunt.com 1 Overview Online disclosure of a suspected CVE-2 0 1 4-1 7 6 1 RTF sample, hanhai source analysis found that the sample is not a CVE-2 0 1 4-1 7 6 1, but in a RTF sample includes both the two vulnerabilities, respectively, for the CVE-2 0 1 2-0 1 ...
MS13-096: Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution (2908005)
The version of Microsoft's Graphics Component installed on the remote host is affected by a heap overflow vulnerability. Specially crafted TrueType font files are not processed properly. A remote, unauthenticated attacker could exploit this vulnerability by getting a user to view content that...
Attacks on New Microsoft Zero Day Using Multi-Stage Malware
Attackers exploiting the Microsoft Windows and Office zero day revealed yesterday are using an exploit that includes a malicious RAR file as well as a fake Office document as the lure, and are installing a wide variety of malicious components on newly infected systems. The attacks seen thus far a...
CVE-2013-3906
GDI+ in Microsoft Windows Vista SP2 and Server 2008 SP2; Office 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Office Compatibility Pack SP3; and Lync 2010, 2010 Attendee, 2013, and Basic 2013 allows remote attackers to execute arbitrary code via a crafted TIFF image, as demonstrated by an image in a...
CVE-2013-3906
CVE-2013-3906 is a memory corruption vulnerability in Microsoft Windows Graphics Component (TIFF handling) that could allow remote code execution. It affected GDI+ in Windows Vista SP2/Server 2008 SP2 and Office suites (Office 2003 SP3, 2007 SP3, 2010 SP1/SP2, Office Compatibility Pack SP3) and L...
CVE-2013-3906 : Zero Day Vulnerability in Microsoft Graphics Component
Microsoft has issued a temporary fix for a 0day vulnerability that can be exploited to install malware via infected Word documents. A Zero-day Remote code execution flaw, which has been dubbed CVE-2013-3906, exploits a vulnerability in a Microsoft graphics component, to target Microsoft Office...
VulnCheck KEV: CVE-2013-3906
Microsoft Graphics Component contains a memory corruption vulnerability which can allow for remote code execution...
MS KB2896666: Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution (deprecated)
The remote host is missing one of the workarounds referenced in KB 2896666. The remote host has a version of the Microsoft Graphics Component installed that is potentially affected by a code execution vulnerability due to the way the application handles specially crafted TIFF images. %NASLMINLEVE...
Microsoft Office Embedded TIFF Image Remote Code Execution (CVE-2013-3906)
A remote code execution vulnerability has been reported in a graphic rendering library used by Microsoft Office products...
CVE-2013-3906 : Zero Day Vulnerability in Microsoft Graphics Component
None...
CVE-2013-3906: a graphics vulnerability exploited through Word documents
Recently we become aware of a vulnerability of a Microsoft graphics component that is actively exploited in targeted attacks using crafted Word documents sent by email. Today we are releasing Security Advisory 2896666 which includes a proactive Fix it workaround for blocking this attack while we...
CVE-2013-3906
creationtimestamp| type| source ---|---|--- 2013-11-05 07:00:00+00:00| seen| https://msrc.microsoft.com/blog/2013/11/cve-2013-3906-a-graphics-vulnerability-exploited-through-word-documents/ 2013-11-08 08:57:29+00:00| seen| MISP/527ca75e-353c-4c91-a7d5-407a950d2109 2013-11-08 09:23:16+00:00| seen|...