Security firm FireEye has found new 0-day exploit in the wild. Carefully prepared with the help of PDF files you can get a malicious program elevated privileges in Windows XP. Errors are unlikely to bring malicious code execution, Microsoft explains just released Microsoft Security Advisory (2,914,486).
Therefore, the attacker uses an older, in order to achieve this objective in a known vulnerability in Adobe Reader. Current vulnerability to 9.5.4, as a PDF file with Adobe Reader system 10.1.6, compromise. Exploit PDF vulnerabilities, they anchor themselves despite limited rights in the system required when using Windows XP problems (CVE-2013-5,065). With the current version of the Adobe Reader,PDF file can cause any damage.
Windows kernel module providing telephony interface NDPROXY found gaps. Microsoft describes in his Advisory urgent administrator can disable this service, preventive action. For users of the system have been working as an administrator, which means that this issue at no extra risk. Like most Windows XP users, due to the system, these compromises Windows gaps in particular reach publicly available service of Windows Server 2003 users work-or limit rights.
0 comments:
Post a Comment