Home / malwarePDF  

Exploit:Win32/Evenex.gen


First posted on 07 March 2009.
Source: SecurityHome

Aliases :

Exploit:Win32/Evenex.gen is also known as Also Known As:Exploit-MSExcel.r (McAfee), ShellCode.B (Norman), Mal/DocDrop-A (Sophos), Trojan.Mdropper.AC (Symantec), CVE-2009-0238 (other).

Explanation :

Exploit:Win32/Evenex.gen is a generic detection for malware, which exploit a vulnerability in a specially crafted Excel document that may corrupt system memory allowing the attacker to execute arbitrary code.
Microsoft has published Microsoft Security Advisory 968272 related to this threat:http://www.microsoft.com/technet/security/advisory/968272.mspx

Symptoms
An attacker who successfully exploited this vulnerability could run arbitrary code as the currently logged-on user. There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptom(s).

Exploit:Win32/Evenex.gen is a generic detection for malware, which exploit a vulnerability in a specially crafted Excel document that may corrupt system memory allowing the attacker to execute arbitrary code.

Installation
In order for this attack to be carried out, a user must first open a specially crafted Excel file attached to an e-mail or otherwise provided to them by an attacker. If a user opens the malicious Excel document using a vulnerable computer, the exploit could execute arbitrary code which could include any number of actions such as downloading or installing other malware.Additional InformationMicrosoft has published Microsoft Security Advisory 968272 related to this threat:http://www.microsoft.com/technet/security/advisory/968272.mspx

Last update 07 March 2009

 

TOP