Exploit:Win32/CVE-2012-1889.A allows an attacker to download and run arbitrary files on your computer.

Make sure you install all available updates from Microsoft to avoid this exploit. For more information on updating Microsoft products please see the Additional information section in this entry.

More details on the vulnerability, including a list of affected Microsoft software, can be found in Microsoft Security Bulletin MS12-043.

Exploit:Win32/CVE-2012-1889.A is the detection for JavaScript code that attempts to exploit a vulnerability in Microsoft XML Core Services versions 3.0, 4.0, 5.0 and 6.0 (described in CVE-2012-1889).

Win32/Mytob.DA@mm is a mass-mailing network worm that targets computers running certain versions of Windows. The worm can spread through e-mail, network shares, MSN Messenger, and Windows Messenger. It can also spread by exploiting the Windows LSASS vulnerability described in Microsoft Security Bulletin MS04-011. The worm has a backdoor component that connects to an IRC server from an infected computer to receive commands from attackers.