Saturday, December 7, 2013

CPE: McAfee AudioParasitic: Episode 40: M$ Tuesday patch

length: 00:06:09

massive release
- July 7th: not patched active control
- July 8th: not patched

Active-x- malicious website – download file to user’s system – active target attack
Now patched!!!

Other couple IE vulnerabilities – social engineering:
MS08-041: MS access snapshot viewer
MS08-042: code execution in word
MS08-045: HTML memory corruption vulnerability
MS08-044: vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using Microsoft Office.

Labels: ,


Post a Comment

Subscribe to Post Comments [Atom]

<< Home