Tag Archives: Zero-Day
Microsoft, Apple, Facebook victims of Java exploits
We wrote several times that when Oracle fixed quickly the security holes in Java, it did not have enough time to address the source of the problem. This can be now seen more clear after big names in the IT … Continue reading
Be aware of fake Java patches for the zero-day exploits
We and pretty much the rest of IT world, have written about the Java zero-day exploit, about the fast patch that Oracle release to remove some of the market pressure and also about the fact that such a quick move … Continue reading
Yet a new Java zero-day exploit?
We don’t know yet if this is a bad joke intended to discredit Oracle and Java, but the media is buzzing about a possible new undetected exploit in Java. This was started by a post of the security researcher Brian … Continue reading
Oracle has fixed the Java zero-day exploit
After the huge media impact that followed up the full disclosure of the vulnerability in Java 7 Update 10, many national and international organizations have started to recommend to their readers to uninstall Java (Germany’s BSI, US-Cert). Oracle couldn’t just … Continue reading
Microsoft fixes the IE zero-day exploit
We have published information about the IE zero-day exploit which affected IE version 6 to 9 on all operating systems on which it is available. Not surprisingly, Microsoft announced today that they have a fix for this problem even before the cumulative patch on … Continue reading
Zero-Day exploit in Internet Explorer(Update #2)
It appears that another exploit is being actively used to install malware. This time, there is an exploit in Internet Explorer versions 6 to 9. This means, that all Windows operating systems until Windows 8 are affected. Microsoft has acknowledged in … Continue reading
Oracle has released the patch for the Java 0-day exploit
We wrote about the Java 0-day exploit (CVE-2012-4681) and that there is no fix available from Oracle. In the meanwhile, we have added also detection for the exploit starting with t he engine version 8.2.10.148 or higher. All Avira products detect this … Continue reading
Zero-Day Vulnerability in Adobe Flash Player, Reader and Acrobat (Update)
Adobe released a security advisory in which it warns from a zero-day vulnerability within current version of Adobe Flash Player, Reader and Acrobat. Affected are Flash Player 10.2.153.1 and earlier versions for Windows, Mac, Linux and Solaris, the current version … Continue reading
New 0-day Exploit for Adobe Reader (Update)
A malicious PDF file has turned up which exploits a new security vulnerability in Adobe Reader and Acrobat – even in the most current version 9.3.4 and 8.2.4, on all supported platforms. There is currently no update available from Adobe … Continue reading
Apply Workaround for Windows Zero-Day Flaw
Since the weekend there is a so-called zero day vulnerability publicly known in all supported (and even in the now unsupported) Windows operating systems. Just by browsing to a folder with a manipulated .lnk file – a shortcut to a … Continue reading