{"uuid": "f1e09bd2-1fd9-4485-b136-65a2282b4339", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2013-3900", "type": "published-proof-of-concept", "source": "https://t.me/cKure/8191", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 Can you trust a file's digital signature? \ud83e\udd14\nA new #Zloader campaign abuses CVE-2013-3900 for defense evasion.\n\n\ud83d\udd25 HTA content appended to a signed Microsoft DLL, without breaking trust\n\ud83d\udd25 MSHTA used to execute the appended script\n\ud83d\udd25 CVE-2013-3900 still unpatched by default https://t.co/5n1AoS6hsl", "creation_timestamp": "2021-11-23T11:27:03.000000Z"}