Content
JS/Exploit-QVOD
- Type
- Trojan
- SubType
- Exploit
- Discovery Date
- 02/05/2008
- Length
- Minimum DAT
- 5223 (02/05/2008)
- Updated DAT
- 5224 (02/06/2008)
- Minimum Engine
- 5.1.00
- Description Added
- 02/05/2008
- Description Modified
- 10/07/2008 1:25 AM (PT)
Tab Navigation
Characteristics
This detection is an exploit detection for the QVOD player from Task Technology.
JS/Exploit-QVOD is a detection for QvodCtrl Class ActiveX Control buffer overflow vulnerability.
The Buffer Overflow occurs while supplying a long string as a parameter to the 'URL' Property. This vulnerability could be exploited by a malicious user to cause remote code execution.
Symptoms
This detection is sufficiently generic, such that it can cover a number of threats that contain the exploit code. Therefore, it is not possible to describe specific symptoms or details about system changes that can occur from this threat. However, simply seeing this detection does not mean that any exploit code was run at all as such exploit code could only run on a vulnerable system.
Additionally some exploits simply cause Internet Explorer to crash and nothing more.
Method of Infection
Removal
Variants
Variants
N/A
All Information
Overview -
JS/Exploit-QVOD.gen is a detection for Qvod Player. QvodCtrl Class ActiveX Control buffer overflow vulnerability.
Characteristics
Characteristics -
This detection is an exploit detection for the QVOD player from Task Technology.
JS/Exploit-QVOD is a detection for QvodCtrl Class ActiveX Control buffer overflow vulnerability.
The Buffer Overflow occurs while supplying a long string as a parameter to the 'URL' Property. This vulnerability could be exploited by a malicious user to cause remote code execution.
Symptoms
Symptoms -
This detection is sufficiently generic, such that it can cover a number of threats that contain the exploit code. Therefore, it is not possible to describe specific symptoms or details about system changes that can occur from this threat. However, simply seeing this detection does not mean that any exploit code was run at all as such exploit code could only run on a vulnerable system.
Additionally some exploits simply cause Internet Explorer to crash and nothing more.
Method of Infection
Method of Infection -
Removal -
Removal -
Variants
Variants -
N/A
