Microsoft's two vulnerabilities were attacked on a massive scale
Source: Internet
Author: User
KeywordsHanging horses method calls
360 Security Center 13th issued a notice, following the outbreak of last week, "MPEG-2 video" 0day vulnerability, Microsoft also broke the "Office memory Damage" 0day vulnerability, the current Trojan horse industry chain has started to use these two loopholes to spread the Trojan virus wantonly. 360 security experts said that at the same time using the two major Microsoft 0day vulnerability to Internet users to carry out large-scale "horse" attacks, this is the first time in the history of network security. XP system Office2000 affected according to 360 security experts, Microsoft "Office memory Damage" 0day vulnerability exists in the Office Page component "OCW10.dll", hackers if the vulnerability component using a specific sequence of methods to invoke the browser window object, Triggers a memory breach that can result in execution of arbitrary code. This vulnerability currently affects all versions of Office2000 and later that run under Windows XP systems. Install the above Microsoft Office software netizens, when using IE6, IE7 or browser using the IE kernel to use this vulnerability of the "Hanging Horse page", hidden in the Web page of the attack code will include the theft of account, peep privacy, advertising, remote control and other Trojan programs secretly downloaded to netizens computer, Internet users at any time to face network silver, online games, QQ accounts and other digital property theft risk, and even become the "chicken". 3 days 7963 "Hang Ma Web page" according to the 360 Security Center malicious Web monitoring system provided data, from the early hours of 11th, the internet has been using "Office memory Damage" 0day vulnerability of sporadic "hanging horse" attacks. In just three days, the amount of attack quickly amplified. As of 13th 3 o'clock in the afternoon, the corresponding "Mount Horse page" number has reached 7,963, including China Project Management Network, Shanghai Polytechnic University, Jintan real Estate Network, modern international Financial Management Standards (Shanghai) Co., Ltd. and other well-known websites. For three days, only 360 security guards have intercepted more than 10 million "horse-mounted" attacks for users. According to Xinhua
The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion;
products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the
content of the page makes you feel confusing, please write us an email, we will handle the problem
within 5 days after receiving your email.
If you find any instances of plagiarism from the community, please send an email to:
info-contact@alibabacloud.com
and provide relevant evidence. A staff member will contact you within 5 working days.
