Exploit:Win32/CVE-2010-2572.A

Detected by Microsoft Defender Antivirus

Aliases: Exploit/Cve-2010-2572 (AhnLab) PPT/Dropper.A (Command) Exploit.MSPPoint.Agent.y (Kaspersky) Exploit.PowerPoint.4 (Dr.Web) Exploit.MSPPoint.Agent (Ikarus) Exploit-PPT.j (McAfee) Troj/ExpPPT-A (Sophos) TROJ_PPDROP.FES (Trend Micro) CVE-2010-2572 (other)

Summary

Exploit:Win32/CVE-2010-2572.A is the detection for specially-crafted Microsoft Powerpoint files that exploit a vulnerability addressed by Microsoft Security Bulletin MS10-088. This vulnerability may allow attackers to execute arbitrary code that can drop files, install programs or modify data without the user's knowledge or consent.

To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products will detect and remove this threat:

For more information on antivirus software, see http://www.microsoft.com/windows/antivirus-partners/.

Update vulnerable applications

This threat exploits a known vulnerability in Microsoft Powerpoint. After removing this threat, make sure that you install the updates available from Microsoft Security Bulletin MS10-088.

Exploit:Win32/CVE-2010-2572.A

Summary

What to do now

Update vulnerable applications

Technical information

Threat behavior

Prevention

Symptoms