Basically the attackers know of an ActiveX with a vulnerability and will try to first install it on your PC to them exploit it. But to make it "invisible" the attacker uses a "safe" ActiveX, such as the Access Snapshot ActiveX.
Why is it safe? Because it is a Microsoft developed and signed ActiveX, which in most cases will install silently on the victim's PC.
Once this "safe" ActiveX is installed, then the attacker can exploit the vulnerability.
So your PC is safe, but not so much. Read more in the Symantec Security Response page.
Other related posts:
Microsoft Ignite New Zealand, Microsoft Surface Studio
Geekzone data analytics with Power BI
Now with more fibre
comments powered by Disqus