Spyware Sucks
“There is no magic fairy dust protecting Macs" – Dai Zovi, author of “The Mac Hacker’s Handbook"

Security Alert: Update Foxit Reader to 5.0.2.0718

July 21st 2011 in Uncategorized

Affected software version: 5.0.1.0523

Vulnerability Description: Foxit Reader is vulnerable to a Insecure Library Loading vulnerability. The libraries identified as being vulnerable are dwmapi.dll, dwrite.dll and msdrm.dll. The vulnerability lies in the way Microsoft Windows loads DLLs. If applications load a library from a specific path and call that path implicitly, Microsoft Windows searches several default paths to find and load the library. A malicious attacker can create a malicious DLL with the same name and place it in a directory where Microsoft Windows searches by default. The application will load the malicious DLL resulting in arbitrary code execution.

http://www.foxitsoftware.com/announcements/201107218580.html


Comments are closed.

As is so often the case, by hovering your computer mouse cursor over the hyperlink, you can see that the URL you would visit by clicking has got nothing to do with Facebook. The domain being used, tianxi-zj.com, was registered in 2005 and the registration has not been updated since mid […]

Previous Entry

This is a very interesting read: http://stopmalvertising.com/malvertisements/ddos-attacks-a-new-twist-in-malvertisements.html

Next Entry

Archives