Microsoft provided some examples of URLs invoked by the malicious Office document, and some hashes of the malicious Office binary format documents. Several exploits targeting this vulnerability have been spotted in the wild, with campaigns starting as early as 2009, meaning that CVE-2010-1331 was indeed an exploited Zero-Day vulnerability. ![]() ![]() Exploitation of this vulnerability enables remote code execution with the same user rights as the current user. We would like to focus on one of the vulnerabilities that was marked as ‘important’: a new MS Office vulnerability with an assigned CVE of CVE-2013-1331, attacking Microsoft Office 2003 and MS Office for Mac (2011). ![]() ![]() Microsoft issued its weekly patch update last Tuesday, June 11, 2013, disclosing five new vulnerabilities (one critical and four important). CVE-2013-1331 – A Zero Day Disclosed By Yiftach Keshet | June 20, 2013
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |