Parent class: Malware
Malicious tools are malicious programs designed to automatically create viruses, worms, or Trojans, conduct DoS attacks on remote servers, hack other computers, etc. Unlike viruses, worms, and Trojans, malware in this subclass does not present a direct threat to the computer it runs on, and the program’s malicious payload is only delivered on the direct order of the user.Read more
Class: Exploit
Exploits are programs that contain data or executable code which take advantage of one or more vulnerabilities in software running on a local or remote computer for clearly malicious purposes. Often, malicious users employ an exploit to penetrate a victim computer in order to subsequently install malicious code (for example, to infect all visitors to a compromised website with a malicious program). Additionally, exploits are commonly used by Net-Worms in order to hack a victim computer without any action being required from the user. Nuker programs are notable among exploits; such programs send specially crafted requests to local or remote computers, causing the system to crash.Read more
Platform: Win32
Win32 is an API on Windows NT-based operating systems (Windows XP, Windows 7, etc.) that supports execution of 32-bit applications. One of the most widespread programming platforms in the world.Description
This family includes software that uses a vulnerability in the method that Microsoft Color Management Module uses to process ICC profile format tags. ICC profile data can be embedded into different file formats, including JPEG, GIF, and TIFF. This exploit allows the attacker to execute arbitrary code in the vulnerable system by using a malicious image on a website or in an email attachment.Top 10 countries with most attacked users (% of total attacks)
1
Italy
10.81%
2
Brazil
10.21%
3
Russian Federation
8.41%
4
Germany
7.21%
5
France
4.80%
6
Spain
3.90%
7
USA
3.60%
8
Mexico
3.30%
9
Saudi Arabia
2.70%
10
Algeria
2.40%
Read more
Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com
Found an inaccuracy in the description of this vulnerability? Let us know!