Follow:

 

Exploit:Java/CVE-2010-4452


Exploit:Java/CVE-2010-4452 is the detection for an HTML file that exploits a vulnerability in Java described in CVE-2010-4452.



What to do now

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Update vulnerable Java applications

This threat exploits a known vulnerability in Java. After removing this threat, make sure that you install the updates available from the vendor. You can read more about this vulnerability in Java, as well as where to download the software update from the following links:

It may be necessary to remove older versions of Java that are still present. Keeping old and unsupported versions of Java on your system presents a serious security risk. To read more about why you should remove older versions of Java, see the following information.

Threat behavior

Exploit:Java/CVE-2010-4452 is the detection for an HTML file that exploits a vulnerability in Java described in CVE-2010-4452.

The HTML file contains an "Applet" tag that is crafted to communicate falsely to the Java plugin that the applet is from a trusted source, and thus allows it to run with full privileges. The exploit is located in the HTML file. When run the applet may download and execute arbitrary files.

Analysis by Chris Stubbs


Symptoms

There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptoms.


Prevention


Alert level: Severe
First detected by definition: 1.103.1501.0
Latest detected by definition: 1.177.1852.0 and higher
First detected on: May 11, 2011
This entry was first published on: May 11, 2011
This entry was updated on: May 20, 2011

This threat is also detected as:
  • Exploit.HTML.CVE-2010-4452.p (Kaspersky)
  • Exploit.HTML.CVE-2010 (Ikarus)