SecurityHome.eu Exploit.Baofeng.A

Home / malware PDF

Exploit.Baofeng.A

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Exploit.Baofeng.A is also known as Trojan.JS.Agent.OX.
Explanation :
This exploit is based on a vulnerability that affects the "rawParse"
method of the BaoFeng Storm ActiveX control (mps.dll), identified by
CLSID:6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB.
Using this exploit, a malicious script can execute arbitrary code in the context of the current process, which will usually download and execute malicious files.

Versions of the Baofeng Storm Player affected:
2.7
2.6
2.5
2.4
2.3
2.2
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20