Threat Monitor
Troj.Downloader.VBS.Psyme.pm
| Aliase: | |
|---|---|
| Pattern: | 200909041330 |
| Threat Typ | Verbreitung | Betroffene Systeme | Gefährlichkeit |
|---|---|---|---|
|
|
|
This malicious program exploits vulnerability CVE-2005-2087.
Microsoft Internet Explorer is prone to a heap-based buffer-overflow vulnerability.The vulnerability is caused due to the JVIEW Profiler (javaprxy.dll) COM object being instantiated incorrectly in Internet Explorer via the object tag. By persuading a victim to visit a malicious Web page with embedded CLSIDs that reference certain COM objects that are not ActiveX controls, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause a memory corruption.
Affected Versions: Microsoft Internet Explorer 5.0.1 SP3
Microsoft Internet Explorer 5.0.1 SP4
Microsoft Internet Explorer 5.5 SP2
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 6.0 SP1
Microsoft Internet Explorer is prone to a heap-based buffer-overflow vulnerability.The vulnerability is caused due to the JVIEW Profiler (javaprxy.dll) COM object being instantiated incorrectly in Internet Explorer via the object tag. By persuading a victim to visit a malicious Web page with embedded CLSIDs that reference certain COM objects that are not ActiveX controls, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause a memory corruption.
Affected Versions: Microsoft Internet Explorer 5.0.1 SP3
Microsoft Internet Explorer 5.0.1 SP4
Microsoft Internet Explorer 5.5 SP2
Microsoft Internet Explorer 6.0
Microsoft Internet Explorer 6.0 SP1
