Trojan appears that leverages patched Microsoft Office flaw
Submitted by l33tdawg on Fri, 2012-02-10 07:38
Credit:
Wikipedia
Researchers at Symantec said they have spotted a trojan taking advantage of a previously patched Microsoft Office vulnerability.
The exploit, which is being used in targeted attacks, arrives as an email that contains a Microsoft Word file and a separate DLL file, a rare combination considering DLL files are not typically sent over email.
"The exploit makes use of an ActiveX control embedded in the Word document file," senior researcher Joji Hamada wrote Thursday in a blog post. "When the Word document is opened, the ActiveX control calls fputlsat.dll, which has the identical file name as the legitimate DLL file used for the Microsoft Office FrontPage Client Utility LIbrary. If the exploit is successful, malware is dropped onto the system."
Source:
Related Articles
- Zeus still operational as domains live on
- Alien Vault finds hackers targeting security hole in MS Office for Mac
- Microsoft finds new BlackHole kit exploiting unpatched Java flaw
- Will the new Microsoft RDP vulnerability spawn Conficker 2.0?
- New zero-day Windows kernel vulnerability associated with Duqu Trojan
Recent comments