901 entries found.
Displaying page 7
of 46.
Exploit:Win32/Jdrop.gen!B
Updated on Apr 14, 2008
Exploit:Win32/Jdrop.gen!B is a generic detection for specially crafted Microsoft Document (DOC) files that open Microsoft Access Database (MDB) files to exploit the Microsoft Jet Database Engine File Parsing Stack Overflow Vulnerability. This vulnerability is referenced by Common Vulnerabilities and Exposures ID CVE-2008-1092, and described in Microsoft Security Advisory 950267.
Alert level:
severe
Trojan:Win32/Clort.A!exploit
Updated on Nov 04, 2008
Trojan:Win32/Clort.A!exploit is a trojan that exploits computers that have not applied Security Bulletin MS08-067.
Alert level:
severe
TrojanDownloader:JS/SetSlice
Updated on Nov 17, 2008
TrojanDownloader:JS/SetSlice is a detection for a certain form of JavaScript files that exploit an un-patched Internet Explorer vulnerability (MS06-057) in order to download and execute another malware.
Alert level:
severe
Exploit:Win32/Pdfjsc.BH
Updated on Aug 20, 2009
Exploit:Win32/Pdfjsc.BH is a detection for specially-crafted PDF files that targets software vulnerabilities in Adobe Acrobat and Adobe Reader.
The vulnerabilities it attempts to exploit are the following:
Alert level:
severe
Exploit:JS/Mult.BB
Updated on Aug 27, 2009
Exploit:JS/Mult.BB is a detection for obfuscated shellcode embedded in a Javascript file. It may be embedded in Web pages or PDF files. It attempts to exploit various vulnerabilities, for example, certain ones in Adobe Acrobat/Reader or those resolved by the Microsoft MS06-057 and MS06-014 security updates.
Files detected as Exploit:JS/Mult.BB may perform any number of malicious actions, such as downloading other malware.
Alert level:
severe
Exploit:Java/Gimsh.A
Updated on Jun 30, 2010
Exploit:Java/Gimsh.A is the detection for a malicious Java applet that exploits the vulnerability in Sun Java RunTime Environment discussed in CVE-2007-0243. Once executed with a vulnerable version of the Java Runtime environment, this malware attempts to download and execute possibly malicious files from a Web site. Upgrading to the latest Java Runtime Environment prevents the exploit from executing.
Alert level:
severe
Exploit:Linux/Vmsplice.I
Updated on Aug 30, 2010
Exploit:Linux/Vmsplice.I is a exploit against a local privilege escalation vulnerability present in Linux 2.6.17-2.6.24.1 and described here.
Alert level:
severe
Exploit:Java/CVE-2008-5353.KE
Updated on Sep 08, 2010
Exploit:Java/CVE-2008-5353.KE is the detection for an obfuscated malicious Java class component that exploits the vulnerability described in CVE-2008-5353.
Alert level:
severe
Exploit:Win32/MS04028!jpeg
Updated on Sep 16, 2010
Exploit:Win32/MS04028!jpeg is a detection for a specially crafted image file (.JPG) that exploits a vulnerability discussed in Microsoft Security Bulletin MS04-028. The exploit could cause a buffer overrun leading to the execution of arbitrary code.
Alert level:
severe
Exploit:Win32/CVE-2010-2883.A
Updated on Sep 21, 2010
Exploit:Win32/CVE-2010-2883.A is a generic detection for specially-crafted PDF files that attempt to exploit the Acrobat SING Table Handling vulnerability CVE-2010-2883. Successful exploitation may lead to denial of service or execution of arbitrary code.
Alert level:
severe
TrojanDownloader:Java/OpenStream.AJ
Updated on Sep 30, 2010
TrojanDownloader:Java/OpenStream.AJ is a detection for a trojan Java applet that allows the downloading and execution of arbitrary files.
Alert level:
severe
Exploit:Win32/Pdfjsc.IP
Updated on Oct 15, 2010
Exploit:Win32/Pidief.IP is a detection for specially-crafted PDF files that target a software vulnerability in Adobe Acrobat and Adobe Reader. The vulnerability exploited by this malware is referenced by the Common Vulnerabilities and Exposures (CVE) Identifier CVE-2010-2883.
Alert level:
severe
Exploit:JS/Mult.CZ
Updated on Oct 25, 2010
Exploit:JS/Mult.CZ is the detection for shellcode that is part of a group of threats, usually written in JavaScript, that attempts to exploit particular vulnerabilities in order to download and run arbitrary files. This malicious code may be hosted on compromised websites, and called by other malicious scripts.
Alert level:
severe
Exploit:Java/CVE-2008-5353.RX
Updated on Nov 08, 2010
Exploit:Java/CVE-2008-5353.RX is a detection for an obfuscated malicious Java class component that exploits the vulnerability described in CVE-2008-5353.
The vulnerability affects Java Virtual Machine (JVM) up to and including version 5 update 22 and version 6 update 10. The vulnerability allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to a host system, outside of its "sandbox" environment.
Alert level:
severe
Exploit:Java/CVE-2010-0094.T
Updated on Nov 08, 2010
Exploit:Java/CVE-2010-0094.T is the detection for files that exploit a vulnerability which affects the Java Runtime Environment (JRE) up to and including version 6 update 18. The vulnerability allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to a host system, outside its "sand box" environment.
Alert level:
severe
Exploit:Win32/Pdfjsc.FV
Updated on Dec 02, 2010
Exploit:Win32/Pdfjsc.FV is a detection for specially-crafted PDF files that target software vulnerabilities in Adobe Acrobat and Adobe Reader. It usually arrives on the system when the user visits a webpage that contains a malicious PDF file or opens an email containing the PDF file as an attachment. It contains embedded JavaScript code used to successfully exploit an Adobe Acrobat/Reader vulnerability.
Alert level:
severe
Exploit:Java/CVE-2008-5353.WW
Updated on Dec 22, 2010
Exploit:Java/CVE-2008-5353.WW is a detection for an exploit that is based on a vulnerability which affects Java Virtual Machine (JVM) version 5 up to and including update 22, as well as version 6 up to and including update 10. The vulnerability allows an unsigned Java applet to gain elevated privileges and potentially have unrestricted access to a host system, outside its "sand box" environment.
Alert level:
severe
TrojanDownloader:Java/OpenConnection.HV
Updated on Jan 20, 2011
TrojanDownloader:Java/OpenConnection.HV is a detection for a Java applet that attempts to download and execute arbitrary files from a remote host. It often works in conjunction with Exploit:Java/CVE-2010-0094, which attempts to exploit a vulnerability in the Java Runtime Environment (JRE).
Alert level:
severe
Exploit:Java/CVE-2010-0840.AN
Updated on Feb 01, 2011
Exploit:Java/CVE-2010-0840.AN is the detection for an obfuscated malicious Java class applet component that exploits the vulnerability described in CVE-2010-0840. Successful exploitation leads to remote code execution.
Alert level:
severe
Exploit:Win32/Pidief.CN
Updated on Feb 04, 2011
Exploit:Win32/Pidief.CN is the detection for usually encoded and/or obfuscated malicious Portable Document Format (PDF) files that attempt to exploit various Adobe Acrobat and Adobe Reader vulnerabilities.
Alert level:
severe