Home / malware Exploit:Win32/Pdfjsc
First posted on 09 June 2019.
Source: MicrosoftAliases :
There are no other names known for Exploit:Win32/Pdfjsc.
Explanation :
Installation
Variants of Win32/Pdfjsc may be encountered when visiting a compromised webpage with a vulnerable PC, or as an attachment to an email.
The PDF file contains a malicious JavaScript that exploits a vulnerability, discussed in CVE-2010-0188.
Payload
Downloads arbitrary files
If Win32/Pdfjsc successfully exploits a vulnerable computer, it may cause the Adobe application to crash, or it may attempt to download and install arbitrary files from a remote server. These downloaded files may be detected as malware.
Some of the vulnerabilities that variants of Win32/Pdfjsc have been known to exploit include:
CVE-2007-5659 CVE-2008-2641 CVE-2008-2992 CVE-2009-0927 CVE-2007-5659 CVE-2008-2641 CVE-2008-2992 CVE-2009-0658 CVE-2009-0836 CVE-2009-0927 CVE-2009-1492 CVE-2009-1493 CVE-2009-4324 CVE-2010-0188 CVE-2010-1297 CVE-2010-2883 CVE-2010-2884 CVE-2010-3654 CVE-2010-4091 Analysis by Shawn Wang and Methusela Cebrian FerrerLast update 09 June 2019
