Published May 27, 2010 | Updated Sep 15, 2017


Severe |Detected with Windows Defender Antivirus

Aliases: Trojan.Script.456124 (BitDefender) JS/CVE-2010-0886.A!exploit (CA) JS/Exploit.JavaDepKit.A (ESET) ExploitJava.CVE-2010-0886.a (Kaspersky) Exploit-CVE2010-0886 (McAfee) HTML/Exloit.L (Norman) Harm.Script.JS.JavaDepKit.a (Rising AV) Troj/ExpJS-W (Sunbelt Software) Bloodhound.Exploit.292 (Symantec)


Exploit:JS/CVE-2010-0886 is a detection for JavaScript code that exploits a vulnerability in the Java Deployment Toolkit (CVE-2010-0886). The vulnerability allows loading of arbitrary Java code with the user privileges, which may lead to downloading and executing arbitrary files or malware.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see
Use up-to-date Java software
This malware exploits a known vulnerability in the Java Deployment Toolkit. Install the updates available from the vendor so that your software is no longer affected by this vulnerability. You can read more about this vulnerability, as well as where to download the software update from the following links:
Follow us