10 matches found
For CVE-2015-2545 vulnerability research and analysis-vulnerability warning-the black bar safety net
1. Overview This is one of the MSOffice vulnerability that allows by using a special Encapsulated PostScript EPSgraphics files for arbitrary code execution. This vulnerability 2015 3 months was found, the vulnerability is not patched case lasted 4 months. After that, Microsoft released a fix...
Hackers exploit CVE-2 0 1 5-2 5 4 5 exploits the global organization-vulnerability warning-the black bar safety net
Kaspersky Labthe global research and analysis teamGReAT in the pastseveral months, for different network attackgangfor the Asia-Pacific(APAC)andthe Far EastregiontheA series of cyber espionage attacks carried out monitoring, found that these attackstheone common feature: in order tousemalware...
APT Groups Exploiting Patch Microsoft Office Flaw CVE-2015-2545
A Microsoft Office vulnerability patched six months ago continues to be a valuable tool for APT gangs operating primarily in Southeast Asia and the Far East. Researchers at Kaspersky Lab today published a report describing how attackers continue to flourish exploiting CVE-2015-2545, a remote code...
CVE-2015-2545
creationtimestamp| type| source ---|---|--- 2016-03-26 12:41:40+00:00| seen| MISP/56f569a9-314c-44a0-bab6-20cc95ca48b7 2016-04-22 20:23:26+00:00| seen| MISP/571a87f2-13e0-4396-83e5-4780950d210f 2016-04-28 15:27:58+00:00| seen| MISP/57221ede-4084-4c2b-9463-4e1e950d210f 2016-05-09 13:58:53+00:00|...
Vigilant in the use of Microsoft Office EPS vulnerability-vulnerability warning-the black bar safety net
Introduction Recently, APT and early warning platform to capture to an attack sample, after analysis, the sample may wish to make use of CVE-2 0 1 5-2 5 4 5 attack, and have a higher attack level. Analysis The sample is an Encapsulated PostScript EPS filter module32bit module for EPSIMP32. FLTin ...
CVE-2015-2545
Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted EPS image, aka "Microsoft Office Malformed EPS File Vulnerability."...
CVE-2015-2545
CVE-2015-2545 affects Microsoft Office (2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1) via a crafted EPS image that triggers memory corruption during EPS parsing, enabling remote code execution. FireEye details describe an EPS-encoded use-after-free in Office’s EPS handling (dict copy/forall flow) le...
MS15-099: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (3089664)
The remote Windows host has a version of Microsoft Office, Excel, Excel Viewer, SharePoint Server, Microsoft Office Compatibility Pack, Microsoft Office Web Apps, and/or Microsoft SharePoint Foundation installed that is affected by one or more of the following vulnerabilities : - Multiple remote...
Microsoft Office Suite Remote Code Execution Vulnerabilities (3089664)
This host is missing a critical security update according to Microsoft Bulletin MS15-099. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
VulnCheck KEV: CVE-2015-2545
Microsoft Office allows remote attackers to execute arbitrary code via a crafted EPS image...