Have a Mac? Have Java?

LZ1 · April 5, 2012, 8:57am

UPDATE 8/27/2012

TURN THAT SHIT OFF

http://labs.alienvault.com/labs/index.php/2012/new-java-0day-exploited-in-the-wild/

boxxa · April 5, 2012, 9:01am

Have a PC? Press Alt + F4 for the new version of NYSpeed!

boardjnky4 · April 5, 2012, 9:04am

kind of a dick move, no?

LZ1 · April 5, 2012, 9:06am

lol

TradersBASE · April 5, 2012, 9:15am

Rick roll? I’m not clicking to find out, that’s for sure. LOL

LZ1 · April 5, 2012, 9:17am

Well I was running the java exploit with a do nothing payload…however I thought that might be mean.

So I changed it to just a website no java lol

boxxa · April 5, 2012, 11:07am

Damn script kiddie.

JayS · April 5, 2012, 11:15am

Is this because Joyner said you don’t write viruses?

LZ1 · April 5, 2012, 11:21am

lol

boardjnky4 · April 5, 2012, 12:30pm

pffftt, he didn’t write it. I saw LZ posting on twitter earlier today trying to acquire said code.

lol

ProgRocker · April 5, 2012, 12:33pm

what a slut…Apple just released a Java update today.

LZ1 · April 5, 2012, 12:44pm

What? I was looking for a malware sample for that one trojan to look at…

The thing I was serving up was using metasploit with a custom payload lol

boardjnky4 · April 5, 2012, 1:34pm

oh come on, i was just joshin with ya

Nice little job on that though. Pair that with a nice little phishing email or facebook link and you’ve got yourself some pwnage.

LZ1 · August 27, 2012, 7:11am

bump updated first post

If you have a Mac or PC might be a good idea to disable Java

ProgRocker · August 27, 2012, 7:19am

WTF does the exploit actually do? connects to an IP and downloads a payload?

boardjnky4 · August 27, 2012, 7:24am

“The applet check if the system is running Windows and gets the parameters passed from the HTML that contains the URL to download the payload. If the system is vulnerable, the payload is downloaded and executed in the system.”

ProgRocker · August 27, 2012, 7:26am

How is that really any different from a majority of the other viruses. I mean Java does suck and leaves an easy gateway into the machine, but I feel like this happens quite frequently already.

LZ1 · August 27, 2012, 7:29am

Pretty much lets you execute whatever you want and doesn’t pop up that the applet is unsigned lol

---------- Post added at 10:29 AM ---------- Previous post was at 10:26 AM ----------

Looks like this if you know Java at all

This just pops calc.exe

http://pastie.org/4594319

boardjnky4 · August 27, 2012, 7:30am

So just because lots of other vulns exist, you should ignore this one?

I like to keep my shit secure.

ProgRocker · August 27, 2012, 7:33am

^Not at all, just doesn’t seem like it’s a new exploit. I’d assume malwarebytes (pro version) as well as some others should flag the IP it’s downloading from as malicious and block it.

Topic		Replies	Views
If you have a Mac or PC and java installed watch out NYSpeed Off Topic	31	1331	February 19, 2013
uh oh... Mac users beware NYSpeed Off Topic	27	913	June 20, 2008
Macbook Air PWN3D!! NYSpeed Off Topic	18	776	March 28, 2008
why is nyspeed requesting that i download search.php and index.php??? NYSpeed Off Topic	29	1180	January 12, 2007
not the most savvy computer guy [why the fourm was down last night] NYSpeed Off Topic	27	966	September 11, 2013

Have a Mac? Have Java?

Related Topics