CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier
Jump to navigation
Jump to search
(Publication) Google search: [1]
| CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier | |
|---|---|
| Botnet | |
| Malware | |
| Botnet/malware group | |
| Exploit kits | Styx, Kore, X2o, Sakura, Neutrino, Blackhole, Cool Exploit Kit, Flimkit, Glazunov, Gong Da, Nuclear Pack, GrandSoft, Sweet Orange, Private EK |
| Services | |
| Feature | |
| Distribution vector | |
| Target | |
| Origin | |
| Campaign | |
| Operation/Working group | |
| Vulnerability | CVE-2013-2465, CVE-2013-2460, CVE-2013-2471, CVE-2013-2463 |
| CCProtocol | |
| Date | 2013 / 2013-08-15 |
| Editor/Conference | Malware don't need cofee |
| Link | http://malware.dontneedcoffee.com/2013/08/cve-2013-2465-integrating-exploit-kits.html (Archive copy) |
| Author | Kafeine |
| Type | Blogpost |
Abstract
“ Two days after disclosure, CVE-2013-2465 is starting to be integrated in Exploit Kits.
What makes it "better" than CVE-2013-2460 (recently integrated in Private Exploit Pack) is that it's targeting all Java branch 6 (update 45 included)
Bibtex
@misc{Lua error: Cannot create process: proc_open(/dev/null): failed to open stream: Operation not permitted2013BFR1843,
editor = {Malware don't need cofee},
author = {Kafeine},
title = {CVE-2013-2465/CVE-2013-2471/CVE-2013-2463 integrating Exploit Kits -- jre7u21 CVE- jre6u45 and earlier},
date = {15},
month = Aug,
year = {2013},
howpublished = {\url{http://malware.dontneedcoffee.com/2013/08/cve-2013-2465-integrating-exploit-kits.html}},
}