PandaLabs discovers a new vulnerability in Access now being used to infect computers
PandaLabs discovers a new vulnerability in Access now being used to infect computers
3/6/2008.PandaLabs, Panda Security’s malware detection and analysis laboratory, has discovered a new vulnerability in Microsoft Access. This is a similar security problem to the one discovered a few months back, categorized as CVE-2007-6026. The newly discovered flaw also affects the msjet40.dll library, albeit at a different point.
The problem is exacerbated by the fact that cyber criminals are already actively using this security hole to install malware silently on computers. Specifically, PandaLabs has detected that it is being used to distribute the dangerous Keylogger.DB Trojan, designed to steal confidential data by logging users’ keystrokes.
This security hole is exploited through maliciously-crafted Access files(.mdb), embedded with malicious code.
According to Luis Corrons, technical director of PandaLabs: “Whenever a vulnerability of this type appears, cyber-crooks will try to take full advantage of it. We can therefore expect to see more malicious Access files in circulation that contain not only this Trojan, but also other types of threats”.
To avoid falling victim to this security problem, PandaLabs advises users not to open suspicious files received or downloaded from the Internet, and to keep their security solutions up-to-date, especially since there is currently no patch available to resolve this vulnerability.
For more information about this story, go to the PandaLabs blog at: http://pandalabs.pandasecurity.com/
About PandaLabs
Since 1990, its mission has been to analyze new threats as rapidly as possible to keep our clients safe. Several teams, each specialized in a specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc), work 24/7 to provide global coverage. To achieve this, they also have the support of TruPrevent® Technologies, which act as a global early-warning system made up of strategically distributed sensors to neutralize new threats and send them to PandaLabs for in-depth analysis. According to Av.Test.org, PandaLabs is currently the fastest laboratory in the industry in providing complete updates to users. More information is available in the PandaLabs blog.
For more information: http://www.pandasecurity.com/homeusers/security-info/
Source: Panda Software International
www.pandasecurity.com
Back
- Microsoft revamps Bing to include interactive social sidebar
The three-column interface also includes a ´snapshot´ for more direct interaction with products and places.
- Adobe Creative Cloud Now Available
Two New Touch Apps for iOS and Adobe Muse Also Shipping
- Acer G6 series - Super-slim design, inspiring performance
- Come Explore the VIA Smart Ecosystem at Computex 2012
- HP tries to beat ultrabook pricing with thin-and-light Sleekbooks
- MasterCard´s PayPass Wallet will span online, mobile, in-store shopping
- Google infringed Java copyrights in Android, jury finds
- After false alarm, no verdict Friday in Oracle Google
- Lenovo building industrial center to develop tablets, smartphones
- Facebook´s valuation for IPO will be lower than initially expected
Member of IVSZ
Member of SZEK
Acer Affinity Gold partner
Dell Registered Partner
OKI System Shinrai Partner
XEROX Viszonteladó
APC megbízható szállító
EATON Authorized Partner
Cisco partner
Symantec Software Partner
ESET Partner
FUJITSU partner
LENOVO Premium Partner
IBM Business Partner
PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel