CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier

From Botnets.fr
Jump to navigation Jump to search

(Publication) Link to the old Wiki page : [1] / Google search: [2]

CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier
Botnet
Malware
Botnet/malware group
Exploit kits Styx, Kore, X2o, Sakura, Neutrino, Blackhole, Cool Exploit Kit, Flimkit, Glazunov, Gong Da, Nuclear Pack, GrandSoft, Sweet Orange, Private EK
Services
Feature
Distribution vector
Target
Origin
Campaign
Operation/Working group
Vulnerability CVE-2013-2465, CVE-2013-2460, CVE-2013-2471, CVE-2013-2463
CCProtocol
Date 2013 / 2013-08-15
Editor/Conference Malware don't need cofee
Link http://malware.dontneedcoffee.com/2013/08/cve-2013-2465-integrating-exploit-kits.html (Archive copy)
Author Kafeine
Type Blogpost

Abstract

Two days after disclosure, CVE-2013-2465 is starting to be integrated in Exploit Kits.

What makes it "better" than CVE-2013-2460 (recently integrated in Private Exploit Pack) is that it's targeting all Java branch 6 (update 45 included)

Bibtex

 @misc{Kafeine2013BFR1843,
   editor = {Malware don't need cofee},
   author = {Kafeine},
   title = {CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier},
   date = {15},
   month = Aug,
   year = {2013},
   howpublished = {\url{http://malware.dontneedcoffee.com/2013/08/cve-2013-2465-integrating-exploit-kits.html}},
 }