Temasec 0-day Archives

Category Archives: 0-day

FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY,FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY

September 12 2017 By Daniel Pany in 0-day, Ben Read, Blog, FLARE, Genwei Jiang, James T. Bennett, Threat Research, Zero-day Vulnerability

FireEye recently detected a malicious Microsoft Office RTF document that leveraged CVE-2017-8759, a SOAP WSDL parser code injection vulnerability. This vulnerability allows a malicious actor...

FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY,FireEye Uncovers CVE-2017-8759: Zero-Day Used in the Wild to Distribute FINSPY

September 12 2017 By Daniel Pany in 0-day, Ben Read, Blog, FLARE, Genwei Jiang, James T. Bennett, Security, Threat Research, Zero-day Vulnerability

FireEye recently detected a malicious Microsoft Office RTF document that leveraged CVE-2017-8759, a SOAP WSDL parser code injection vulnerability. This vulnerability allows a malicious actor...

Second Adobe Flash Zero-Day CVE-2015-5122 from HackingTeam Exploited in Strategic Web Compromise Targeting Japanese Victims

July 19 2015 By Daniel Pany in 0-day, 0day exploits, Blog, FireEye Threat Intelligence, Threat Intelligence, Threat Research

On July 14, FireEye researchers discovered attacks exploiting the Adobe Flash vulnerability CVE-2015-5122, just four days after Adobe released a patch. CVE-2015-5122 was the second Adobe Flash...