SecurityHome.eu Exploit.HTML.Agent.AQ

Home / malware PDF

Exploit.HTML.Agent.AQ

First posted on 21 November 2011.
Source: BitDefender
Aliases :
There are no other names known for Exploit.HTML.Agent.AQ.
Explanation :
This piece of malicious code is written in javaScript and affects a critical vulnerability of the Microsoft Vector Markup Language. It affects all the computer users running Microsoft Windows operating systems, from Microsoft Windows 2000 Service Pack 4 to Microsoft Windows Server 2003 x64 Edition. Users who already mnigrated to Windows Vista are unafected.

Once executed, the malicious script code downloads and runs an infected exe file located on a compromised webserver (http://www.bluell.cn/[omitted].exe). In order for the attack to succeed, the user must visit a web page infected with the malicious code, or to open specially crafted e-mail message with Microsoft Outlook.

The vulnerability my also be successfully exploited without users' interaction if the mail message is simply rendered within the Outlook e-mail client.
Last update 21 November 2011

TOP

Malware :

Last 20

Exploit.HTML.Agent.AQ

Aliases :

Explanation :

Malware :

Family: