We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Exploit:Win32/CVE-2012-1889.A
Aliases: Exp/20121889-A (Sophos) EXP/CVE-2012-1889.L (Avira) Exploit.CVE-2012-1889.Gen (BitDefender)
Summary
Exploit:Win32/CVE-2012-1889.A allows an attacker to download and run arbitrary files on your computer.
Make sure you install all available updates from Microsoft to avoid this exploit. For more information on updating Microsoft products please see the Additional information section in this entry.
More details on the vulnerability, including a list of affected Microsoft software, can be found in Microsoft Security Bulletin MS12-043.
Exploit:Win32/CVE-2012-1889.A is the detection for JavaScript code that attempts to exploit a vulnerability in Microsoft XML Core Services versions 3.0, 4.0, 5.0 and 6.0 (described in CVE-2012-1889).
To detect and remove this threat and other malicious software that may be installed on your computer, run a full-system scan with an appropriate, up-to-date, security solution. The following Microsoft products detect and remove this threat:
Update vulnerable Microsoft applications
This threat exploits known vulnerabilities in Microsoft XML Core Services. Microsoft XML Core Services are integral components in many Microsoft applications.
After removing this threat, make sure that you install all updates available from Microsoft. You can read more about this vulnerability, as well as where to download updates, from the following links:
