Exploit:Java/CVE-2008-5353.I is a detection for malicious code that attempts to exploit a vulnerability in the Java Runtime Environment (JRE). The exploit may lead to the download and execution of arbitrary files in a computer in which a vulnerable version of JRE is installed.
The vulnerability is described in CVE-2008-5353 and is related to deserializing calendar objects. It may allow an untrusted applet or application to escalate privileges.
Exploit:Java/CVE-2008-5353.I is capable of loading the following files, both of which are also detected as Exploit:Java/CVE-2008-5353.I:
Exploit:Java/CVE-2008-5353.I also has the capability to connect to certain URLs to download and execute arbitrary files.
Analysis by Francis Allan Tan Seng
The following system changes may indicate the presence of this malware: