CVE 2010-1885 exploited in the wild

Filed Under: Malware, SophosLabs, Vulnerability

The recent Microsoft Windows Help and Support Center vulnerability (CVE 2010-1885) is being exploited in the wild.

Today, we got the first pro-active detection (Sus/HcpExpl-A) on malware that is spreading via a compromised website.

This malware downloads and executes an additional malicious component (Troj/Drop-FS) on the victim's computer, by exploiting this vulnerability.

More details about CVE 2010-1885 can be found in our report here.

We detect this malware family as: Mal/HcpExpl-A.

You might like

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s