词条 | Webattacker |
释义 |
Webattacker is a do-it-yourself malware creation kit that includes scripts that simplify the task of infecting computers and spam-sending techniques to lure victims to specially rigged Websites. It was allegedly created by a group of Russian programmers. The kit demands minimal technical sophistication to be manipulated and used by crackers. Sophos has reported that WebAttacker is being sold at some hacker Web sites or through a network of individual resellers and includes technical support.[1] The malware code is currently being delivered in at least seven exploits, including threats aimed at Microsoft's MDAC software, Mozilla's Firefox Web browser and Sun Microsystems's Java virtual machine programs. The exploitation process usually consists of the following steps:
The software appears to be updated regularly to exploit new flaws, such as the flaw discovered in September 2006 in how Internet Explorer handles certain graphics files.[2] VulnerabilitiesWebAttacker exploitation technique is currently based on the following vulnerabilities:
Notes1. ^{{cite web|url=http://www.sophos.com/pressoffice/news/articles/2006/03/russianspykits.html|title=Spyware kits sold for fifteen dollars available on the web, Sophos reports|date=2006-03-24|accessdate=2006-09-20}} 2. ^{{cite web|url=http://news.zdnet.com/2100-1009_22-6117407.html|title=Porn sites exploit new IE flaw|author=Evers, Joris|date=2006-09-19|accessdate=2006-09-20 |archiveurl = https://web.archive.org/web/20061005022745/http://news.zdnet.com/2100-1009_22-6117407.html |archivedate = 2006-10-05}} External links 2 : Computer security exploits|Types of malware |
随便看 |
|
开放百科全书收录14589846条英语、德语、日语等多语种百科知识,基本涵盖了大多数领域的百科知识,是一部内容自由、开放的电子版国际百科全书。