CVE-2017-0199 – Computer Security Articles

Malicious doc “builders” abandon old exploits wholesale

September 11, 2018 admin CVE-2012-0158, CVE-2017-0199, CVE-2017-11882, CVE-2018-0802, CVE-2018-4878, document, downloader, dropper, editor, Equation, Excel, maldoc, maldocs, malware, microsoft, MSCOMCTL.OCX, office, PowerPoint, RTF, SophosLabs Uncut, weaponized, Word

Credit to Author: Gabor Szappanos| Date: Tue, 11 Sep 2018 16:15:26 +0000

A key piece of the malware ecosystem adopts new vulnerabilities, and scraps old exploits, in record time<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/gKMCGkmvrcQ” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

Decoy Microsoft Word document delivers malware through a RAT

October 13, 2017 admin CVE-2017-0199, CVE-2017-8759, Exploits, Rat, Threat analysis, Word exploits

Credit to Author: Jérôme Segura| Date: Fri, 13 Oct 2017 15:00:41 +0000

A Remote Administration Tool (RAT) is delivered via an unusual route: a benign-looking Microsoft Word document with an ulterior motive.

Categories:

Tags: CVE-2017-0199 CVE-2017-8759 exploits rat Word exploits

MalwareBytes Security

Fake IRS notice delivers customized spying tool

September 21, 2017 admin CP2000, CVE-2017-0199, doc, exploit, irs, malspam, malware, office, phishing, Rat, remote administration tool, RMS, spy, Threat analysis, Word

Credit to Author: Jérôme Segura| Date: Thu, 21 Sep 2017 15:00:24 +0000

Threat actors leverage a Microsoft Office exploit to spy on their victims. In this blog post, we will review its delivery mechanism and analyze the malware we observed, a modified version of a commercial Remote Administration Tool (RAT).

Categories:

Tags: CP2000 CVE-2017-0199 doc exploit IRS malspam malware Office phishing rat remote administration tool RMS spy word

(Read more…)

The post Fake IRS notice delivers customized spying tool appeared first on Malwarebytes Labs.

QuickHeal Security

CVE-2017-0199 – Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API

April 14, 2017 admin CVE-2017-0199, exploit, Hacker, malware, Microsoft Office, RTF, Vulnerability, WordPad, Zero-Day

Credit to Author: Pradeep Kulkarni| Date: Fri, 14 Apr 2017 09:52:28 +0000

The newly discovered zero-day vulnerability (CVE-2017-0199) in Microsoft Office/WordPad is being actively exploited in the wild. Almost all Microsoft Office versions are affected with this bug. To fix this vulnerability, Microsoft released a security update on April 11, 2017. Vulnerable Versions According to Microsoft, the following are the affected products…

The post CVE-2017-0199 – Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API appeared first on Quick Heal Technologies Security Blog | Latest computer security news, tips, and advice.