Trojan:Win32/Chymine.A
Worm:Win32/Stuxnet.B
Exploit:Java/CVE-2008-5353.B
Exploit:Win32/Pdfjsc.BC
Windows Defender detects and removes this threat.
This threat uses a vulnerability in some Adobe products to download and run files on your PC, including other malware.
It can run if you have a vulnerable version of Adobe on your PC and you visit a malicious website, or open a malicious PDF document attached to an email.
The following versions of Adobe Reader and Acrobat are vulnerable:
- 9.x before 9.5.5
- 10.x before 10.1.7
- 11.x before 11.0.03
You may get an alert about this threat even if you're not using a vulnerable software version. This is because we detect when an attempt is made to exploit this vulnerability, even if it isn't successful.
You can find more information about this threat on the CVE website or our page about exploits.
Exploit:Win32/Pdfjsc.FN
Exploit:Win32/Taro.H
Exploit:Java/CVE-2008-5353.DG
Exploit:Win32/Pdfjsc.FU
Exploit:Java/CVE-2009-3869.A
Exploit:Win32/Pdfjsc.HW
Exploit:JS/Blacole
Microsoft security software detects and removes this family of threats.
You should also update your software to be fully protected.
These threats are part of the Blacole family of malware. For more information, see our Blacole family description.
Exploit:Python/CVE-2017-0143
Microsoft Defender Antivirus detects and removes this threat.
This detection covers compiled Python scripts that exploit a set of vulnerabilities fixed in the MS17-010 security bulletin. These vulnerabilities, which include CVE-2017-0144 (also known as EternalBlue) and CVE-2017-0145 (also known as EternalRomance), can allow the remote execution of custom code on unpatched machines.
Exploit:JS/Belmoo
Exploit:Java/CVE-2008-5353.WW
Exploit:Java/CVE-2010-0840.AL
Exploit:Java/CVE-2010-0840.BJ
Exploit:Win32/CVE-2010-2572.A
Exploit:Java/CVE-2010-0094.CY
Exploit:Java/CVE-2012-1723.BWM
Exploit:Java/CVE-2012-1723.BVP is a malicious Java applet that attempts to exploit a vulnerability (CVE-2012-1723) in the Java Runtime Environment (JRE) in order to download and install files of an attacker’s choice onto your computer.
If you visit a website containing the malicious code while using a vulnerable version of Java, the exploit is loaded. It then attempts to download and execute files from a remote host/URL; the files that are downloaded and executed could include additional malware.
The following versions of Java are vulnerable to this exploit:
- JDK and JRE 7 Update 4 and earlier Java SE
- JDK and JRE 6 Update 32 and earlier Java SE
- JDK and JRE 5.0 Update 35 and earlier Java SE
- SDK and JRE 1.4.2_37 and earlier Java SE
Exploit:Java/CVE-2012-1723.ALU
Exploit:Java/CVE-2012-1723.ALU is a malicious Java applet that attempts to exploit a vulnerability (CVE-2012-1723) in the Java Runtime Environment (JRE) in order to download and install files of an attacker’s choice onto your computer.
If you visit a website containing the malicious code while using a vulnerable version of Java, the exploit is loaded. It then attempts to download and execute files from a remote host/URL; the files that are downloaded and executed could include additional malware.
The following versions of Java are vulnerable to this exploit:
- JDK and JRE 7 Update 4 and earlier Java SE
- JDK and JRE 6 Update 32 and earlier Java SE
- JDK and JRE 5.0 Update 35 and earlier Java SE
- SDK and JRE 1.4.2_37 and earlier Java SE