Thread: New IE Zero-Day Exploit Leads to PoisonIvy
View Single Post
Old 09-26-2012, 12:27 PM
Jomar's Avatar
Jomar Jomar is offline
Co-Administrator
Community Support Team
  
Join Date: Aug 2006
Posts: 27,700
15 yr Member
Jomar Jomar is offline
Co-Administrator
Community Support Team
Jomar's Avatar
 
Join Date: Aug 2006
Posts: 27,700
15 yr Member
Help New IE Zero-Day Exploit Leads to PoisonIvy
New IE Zero-Day Exploit Leads to PoisonIvy

[We’re currently investigating a new zero-day exploit that affects Internet Explorer versions 7, 8, and 9. The exploit, which is detected by Trend Micro as HTML_EXPDROP.II, is found to be hosted in {BLOCKED}.{BLOCKED}.104.149. Incidentally, this server also hosted the Java zero-day exploit reported last August 30.

Based on our initial analysis, when executed, HTML_EXPDROP.II drops a malicious .SWF file (SWF_DROPPR.II). The .SWF file then drops a backdoor detected as BKDR_POISON.BMN. More information the analysis will be posted in this entry.]
http://blog.trendmicro.com/trendlabs...-to-poisonivy/

************************************************** ****

Microsoft released a patch last Friday, so hopefully your system got that security update, you might double check to see if you got it or not.
__________________
Search NT -
.
Jomar is offline   Reply With QuoteReply With Quote
"Thanks for this!" says:
stagger (10-01-2012)