Zero-day Microsoft DirectShow MPEG2TuneRequest Exploit leads to KILLAV malware
Earlier today, TrendLabs has been alerted of a zero-day exploit in the Microsoft Video streaming ActiveX control MsVidCtl. Around 967 Chinese websites are reported to be infected by a malicious script that leads users to successive site redirections and lands them to download a .JPG file containing the exploit. Trend Micro detects it as JS_DLOADER.BD
Here is the original:
Zero-day Microsoft DirectShow MPEG2TuneRequest Exploit leads to KILLAV malware
Tags: activex, chinese-websites, july-7th, microsoft, microsoft-video, msvidctl, news, security, spam, too, trend-micro, vulnerabilities, zero-day, zero-day-microsoft
This entry was posted on Monday, July 6th, 2009 at 6:36 pm and is filed under security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.