Follow:

 

Exploit:JS/ShellCode.P


Exploit:JS/ShellCode.P is a generic detection for JavaScript objects that construct shellcode. These scripts may be embedded within other document files such as specially-crafted .html files, for example.


What to do now

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:
 
 
For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Threat behavior

Exploit:JS/ShellCode.P is a generic detection for JavaScript objects that construct shellcode. These scripts may be embedded within other document files such as specially-crafted .html files, for example.
 
This detection also includes malicious JavaScript that attempts to exploit the following vulnerabilities:
 
 
This threat may be encountered when visiting a malicious webpage or by viewing malicious HTML content containing the exploit.
 
If the exploit runs on a vulnerable computer, it could result in the download and execution of arbitrary files from the following website:
 
  • hxxp://uev1.co.cc
 
Analysis by Tim Liu

Symptoms

There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptoms.

Prevention


Alert level: Severe
First detected by definition: 1.101.352.0
Latest detected by definition: 1.101.352.0 and higher
First detected on: Mar 29, 2011
This entry was first published on: Mar 30, 2011
This entry was updated on: Apr 17, 2011

This threat is also detected as:
  • Exploit.JS.CVE-2010-1885 (Ikarus)
  • Exploit.JS.CVE-2010-1885.i (Kaspersky)