Oracle Rushes Emergency Java Update to Patch McRAT Vulnerabilities | threatpost

Published by

Oracle rushed another emergency Java update to patch vulnerabilities in the platform, including CVE-2013-1493, which was reported being exploited in the wild last week.

[q]The vulnerability allows for arbitrary memory execution in the Java virtual machine process; attackers exploiting the flaw were able to download the McRAT remote access Trojan. McRAT, as it turns out, is not a reliable exploit, experts at FireEye said last week, adding that the executable tries to overwrite a large memory chunk and does crash the JVM. If the executable does successfully install itself, it reaches out to a command and control server at 110.173.55.187 for more instructions. This is the same C2 server used in the attack on security company Bit9, FireEye said last week.[/q]
 Oracle Rushes Emergency Java Update to Patch McRAT Vulnerabilities | threatpost