Blog

Ranjeet Menon
Patch cycle skip
December 8, 2006

The last post on Zero Day CVE-2006-4777 had infomation about the new vulnerability which was discovered well before the Microsoft Patch Cycle. Yesterday Microsoft Security Bulletin Advance Notification announced what the patch contains.

They have not included fix for CVE-2006-4777Microsoft Security Advisory. So well before Microsoft action we have added detection for all the files which get installed by opening the malformed document.

TrojanDownloader.Cryptic.ec

TrojanDownloader.Cryptic.f

TrojanDownloader.Tiny.y

Backdoor.HacDef.db

Backdoor.Pakes

Customer and reader are still requested not open or save Word files that you receive from un-trusted sources or that you receive unexpectedly from trusted sources.

SHARE THIS STORY

Have something to add to this story? Share it in the comments.

No Comments, Be The First!

Your email address will not be published.

CAPTCHA Image