|
Wednesday, 03 August 2005 |
Malware type: Java Applet
Aliases: Downloader.Trojan, Exploit-ByteVerify, Java.Shinwow.AT, Troj/ByteVeri-F, TrojanDownloader:Java/OpenConnection.K, Win32/ByteVerify.26610!Exploit!Trojan
In the wild: No
Destructive: No
Language: English
Platform: Windows 95, 98, ME, NT, 2000, XP
Encrypted: No
Description:
This malware is a component of a malicious Java archive file (JAR) that resides in a malicious Web site. Machines infected with the malware JS_FORTNIGHT.B are redirected to this Web site.
This malware calls and executes another malware, JAVA_JJBLACK.C, which results in modifications to the browser and registry settings of the infected system.
This is Trend Micros detection for JAVA classes that exploit a known vulnerability in Microsoft Virtual Machine in Windows Operating Systems and Internet Explorer. This flaw allows malicious users to execute codes of his or her choice when a user visits an infected Web site.
To know more of this vulnerability, how to determine a vulnerable system, and how to install security patches, continue reading on Microsoft?s Web site at this link:
MS03-011 Security Bulletin
|
