Saturday, September 1, 2012

0 Day Java Exploit Source Code Leaked

Right Time | 12:50 AM | | Be the first to comment!
Be The First To Comment

[POC] Source code for the New 0-day Java Exploit is Now available to all openly

Security Researchers from FireEye have reported that a new Zero-day Java vulnerability is currently being exploited in a wild. The most of the recent Java run-time environments i.e., JRE 1.7x are vulnerable.Initially , Researchers discovered that this exploit hosted on named ok.XXX4.net. Currently this domain is resolving to an IP address in China.
A successful exploit attempt can result in a dropper (Dropper.MsPMs) getting installed on infected systems. The dropper executable is located on the same server.(http://ok.XXX4.net/meeting/hi.exe)

The Dropper.MsPMs connects to C&C domain hello.icon.pk which is currently resolving to an IP address 223.25.233.244 located in Singapore.

Get the source Code Here

Source Media :Fireeye


 

© 2012Truth Can Never Be Hidden - Designed by Chandrakant Nial | SEO Service | Feelings | Sitemap

About Us | Services By DarkSite | Write For Us