首頁 > Exploits, Malware Research > New Arrival: CVE-2010-0806 – IE6/7 ZeroDay

New Arrival: CVE-2010-0806 – IE6/7 ZeroDay

2010年3月11日 Mars 發表評論 閱讀評論

The new IE zero-day attacking is immediately used in targeted attacks.In the past few days, we have captured a number of samples derived from the version published on  rec-sec website.

As you can see, the exploit uses a common heap spary method to build a memory that contains the shellcode. When the shellcode gets executed, a malware wll be downloaded from a  compromised website.

The detailed analysis about this malware can be seen from our system.

Categories: Exploits, Malware Research Tags:
  1. ie7 falied
    2010年3月20日20:22 | #1
    回覆 | 引用

    i have test this code on windows xp sp3 (english) and Ie7.0 sp0(en),but failed. i was upset.
    how about u?

    [回應]

  2. ie7 falied
    2010年3月20日20:51 | #2
    回覆 | 引用

    我出错的位置在eip= e80875ff处 ,是不是因为地址太高,覆盖不到?大家有没有跟我一样的问题?如何解决的?如果有好的方法,请跟我联系 karpenter@sina.com 不胜感激!

    [回應]

  3. Christian Louboutin Shoes
    2010年6月5日01:53 | #3
    回覆 | 引用

    wonderful share, great article, very usefull for me…thanks

    [回應]

  1. 目前尚無任何 trackbacks 和 pingbacks。