Patch/Configuration Management, Vulnerability Management

LSP trojan targets PowerPoint

July 22, 2006

Microsoft PowerPoint users have been targeted by a trojan that acts as a layered service provider (LSP), Symantec reported this week.

The trojan, called Riler.F, is dropped on to the system through another recently reported trojan that exploits a PowerPoint zero-day flaw. Symantec originally warned of the PPDropper trojan last week.

According to Symantec, Riler.F allows a remote attacker to have unauthorized access to the compromised computer. The company gives the trojan a damage level of "medium" but a distribution level of "low."

Microsoft isn't expected to release a patch to fix the PPDropper vulnerability until Aug. 8.

Ericka Chickowski

Vulnerability Management

SAP NetWeaver bug exploited since January, allows RCE

Steve ZurierMay 9, 2025

Remote code execution possible of SAP NetWeaver Visual Composer flaw rated 10.0.

(Credit: monticellllo – stock.adobe.com)

Vulnerability Management

SonicWall addresses trio of SMA 100 flaws

SC StaffMay 9, 2025

SecurityWeek reports that fixes have been released by SonicWall to address a trio of vulnerabilities impacting its Secure Mobile Access 100 series appliances.

Vulnerability Management

Cisco patches maximum severity vulnerability in IOS XE Software

Laura FrenchMay 8, 2025

A hard-coded JSON Web Token could allow a remote attacker to upload files with root privileges.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

Related Terms

Bug Buffer Overflow Disassembly