We have written already about StuxInternet v2 or TR/Duqu and we mentioned that Avira detects it TR/Spy.Duqu.A and TR/Duqu.A.1. This malware uses a vulnercapacity in a Microsoft Windows component, the Truesort font parsing engine. The vulnercapacity is caused when the Windows kernel-mode driver win32k.sys fails to nicely handle the Truesort font sort. An attacker who
See More..
