High School Webpage Targeted by CVE-2012-1889 Exploit
We observed a zero-day attack aimed at a Chinese high school webpage and leveraged the Microsoft XML Core Services vulnerability. This discovery came about just days after Microsoft released an […]
View ArticleMicrosoft Pressured To Patch Zero Day As VUPEN Creates Serious Exploit
Microsoft is facing pressure to patch a zero-day threat that is being exploited in the wild, as vulnerability seller VUPEN has found a way to make the exploit work across all Windows platforms. Attack...
View ArticleZero-day XML Core Services vulnerability included in Blackhole exploit kit
Shortly after our original advisory about the latest zero-day vulnerability in Microsoft XML Core Services (CVE-2012-1889), code to exploit the vulnerability was seen in a Blackhole exploit kit. The...
View ArticleTechnical Analysis of CVE-2012-1889 Exploit HTML_EXPLOYT.AE Part 1
Last month, Microsoft released a fix tool in order to address a vulnerability in Microsoft XML Core Services. The said vulnerability, according to the Microsoft Security Advisory, could allow remote...
View ArticleTechnical Analysis of CVE-2012-1889 Exploit HTML_EXPLOYT.AE Part 2
In the first part of our three-part blog entry about HTML_EXPLOYT.AE, we provided an analysis on how HTML_EXPLOYT.AE uses Microsoft XML Core Services vulnerability (CVE-2012-1889). As previously...
View ArticleTechnical Analysis of CVE-2012-1889 Exploit HTML_EXPLOYT.AE Part 3
As discussed in our previous blog entries, we’ve found an exploit (Trend Micro detection HTML_EXPLOYT.AE) that targets a vulnerability found in Microsoft XML Core Services (CVE-2012-1889). Based on our...
View ArticlePatch Tuesday July 2012 – Focus on the Browser
This month’s patch Tuesday brings a set of three “critical” bulletins focused on Windows/web browser component vulnerabilities and six other bulletins rated “important”. In other words, two of the...
View ArticlePatch Tuesday critical fixes for July 2012
Microsoft has released nine patches this month, including the much awaited fix for MSXML (CVE-2012-1889). Read more: Patch Tuesday critical fixes for July 2012
View ArticleJuly 2012 Patch Tuesday Includes Update for MS Security Advisory (2719615)
Microsoft released nine bulletins yesterday, including a patch for MS Security Advisory (2719615), which Microsoft put out on the same day of last month’s bulletin release. Although we have not seen an...
View ArticlePatch Tuesday August 2012 – An Array of Client-Side and Server-Side Targets
August brings a wild array of Microsoft technologies to update this month, with both significant client side and server side targets in this month’s list of vulnerable software. Nine security bulletins...
View Article