Friday, October 26, 2007 3:30 PM cmosby

Malicious PDF files being spammed out in volume - F-Secure Weblog : News from the Lab

 

Malicious PDF files being spammed out in volume
Posted by Jusu @ 15:10 GMT | Comments

Malicious PDF file (report.pdf or debt.2007.pdf or overdraft.2007.10.26.pdf or so) has been massively spammed through email during last hour and the spam run is still continuing. The PDF is spiced with CVE-2007-5020 exploit that downloads ms32.exe that downloads more componets. At this point it's not clear yet what is the final payload of the malware, because of missing files in the download chain. We are investigating further.
urisploit
The subjects for the spam messages include:
  Your credit report
  Your credit points
  Your balance report
  Personal Financial Statement
  Personal Credit Points
  Personal Balance Report
  Your Credit File
  Balance Report
More information in our full description.
More on the scope of the vulnerability from a ZDNet article.

Source: Malicious PDF files being spammed out in volume - F-Secure Weblog : News from the Lab

Filed under: , ,

Comments

No Comments