TechBlog

Security News? Just a few clicks away

Tag Archives: Exploit

Avira users are protected against the MiniDuke Malware (Updated)

If you live on this planet, you must have definitely have heard of the new malware that is making use of a zero-day vulnerability in Adobe Reader. This malware is called MiniDuke, and it is slowly but surely becoming the … Continue reading

Microsoft, Apple, Facebook victims of Java exploits

We wrote several times that when Oracle fixed quickly the security holes in Java, it did not have enough time to address the source of the problem. This can be now seen more clear after big names in the IT … Continue reading

Be aware of fake Java patches for the zero-day exploits

We and pretty much the rest of IT world, have written about the Java zero-day exploit, about the fast patch that Oracle release to remove some of the market pressure and also about the fact that such a quick move … Continue reading

Yet a new Java zero-day exploit?

We don’t know yet if this is a bad joke intended to discredit Oracle and Java, but the media is buzzing about a possible new undetected exploit in Java. This was started by a post of the security researcher Brian … Continue reading

Oracle has fixed the Java zero-day exploit

After the huge media impact that followed up the full disclosure of the vulnerability in Java 7 Update 10, many national and international organizations have started to recommend to their readers to uninstall Java (Germany’s BSI, US-Cert). Oracle couldn’t just … Continue reading

YAJZE: Yet another Java Zero-Day Exploit (Update)

Unfortunately, it is really the case to say that Java has “yet another zero-day exploit”. The latest version of Java, v7 Update 10 is affected and currently there is no plan for a patch. The vulnerability which is already used … Continue reading

Avira USSD Exploit blocker

Some mobile phones register the special URIs with the prefix “tel:” as representing a phone number which should be called. Some also register the USSD protocol, allowing them to do even more with a single command. Unstructured Supplementary Service Data (USSD) is a … Continue reading

Oracle has released the patch for the Java 0-day exploit

We wrote about the Java 0-day exploit (CVE-2012-4681) and that there is no fix available from Oracle. In the meanwhile, we have added also detection for the exploit starting with t he engine  version 8.2.10.148 or higher. All Avira products detect this … Continue reading

0-day exploit for Java 1.7 (Update)

Recently a vulnerability in Oracle’s Java Runtime Environment (JRE) 1.7 was discovered that may allow an applet to execute any program with arbitrary permissions. The JRE framework allows any browser on any supported platform to execute Java applications called applets … Continue reading

Brief analysis of the Adobe vulnerability

We have published the Security Advisory for Adobe Reader and Acrobat informing the users about the vulnerability found in the Adobe Acrobat and Adobe Reader which is currently actively exploited. The vulnerability in the U3D component allows remote attackers to … Continue reading