Skip to main content
Skip to main content
Microsoft Security Intelligence
Cart 0 items in shopping cart
Sign in
Published Apr 30, 2010 | Updated Sep 15, 2017

Exploit:JS/ShellCode.Z

Detected by Microsoft Defender Antivirus

Aliases: JS/Cosmu.A (Command) HTML/Shellcode.Gen (Avira) JS/CVE-2008-0015!exploit (CA) Trojan.JS.Agent.bhm (Kaspersky) Exploit-CVE2010-0806 (McAfee) Hack.Exploit.Script.JS.Agent.ju (Rising AV) Trojan.JS.BOFExploit (Sunbelt Software) Mal_JShel (Trend Micro)

Summary

Exploit:JS/ShellCode.Z is a generic detection for JavaScript objects that construct shellcode. These scripts may be embedded within other document files such as specially-crafted .PDF files, for example.
 
This detection also includes malicious JavaScript that attempts to exploit an uninitialized memory corruption vulnerability (CVE-2010-0806) that allows the execution of arbitrary code. Microsoft released Microsoft Security Bulletin MS10-018 to mitigate this vulnerability.
To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see http://www.microsoft.com/security/antivirus/av.aspx.
 
This detection also includes malicious JavaScript that attempts to exploit an uninitialized memory corruption vulnerability (CVE-2010-0806) that allows the execution of arbitrary code. Microsoft released Microsoft Security Bulletin MS10-018 to mitigate this vulnerability.
Follow us