Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
3389 Views 0 Replies Latest reply: Jan 5, 2010 2:38 PM by JimWalter RSS
JimWalter McAfee Employee 8 posts since
Nov 13, 2009
Currently Being Moderated

Jan 5, 2010 2:38 PM

Report of Java Object Serialization exploit in use in web drive-by attacks (CVE-2008-5353)

Hello,

 

Some sources are reporting new exploitation of CVE-2008-5353 in-the-wild.  PoC code has been available for some time, but this would be a first for in-the-wild exploitation.

 

McAfee Labs is currently investigating.  Updates will be provided via MTIS.

 

This new exploit code is detected by the McAfee GW Edition as Java.Agent.S

 

Detail - http://isc.sans.org/diary.html?storyid=7879

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points