Content

Exploit-CVE2008-0083

Type
Trojan
SubType
Exploit
Discovery Date
04/10/2008
Length
Varies
Minimum DAT
5271 (04/10/2008)
Updated DAT
5271 (04/10/2008)
Minimum Engine
5.1.00
Description Added
04/10/2008
Description Modified
04/22/2008 7:47 PM (PT)
Risk Assessment
Corporate User
Low
Home User
Low

Tab Navigation

Characteristics

This is a generic detection for malware that attempts to exploit a vulnerability that is patched by the vendor in MS08-022. The vulnerability lies in the Windows VBScript and JScript scripting engine.

When visiting a malicious website exploiting this vulnerability, the exploit can cause arbitrary code execution to install additional malware; or abnormal termination of the web broswer.

More details of this vulnerability and the vendor patch at:

Symptoms

When successful, the exploit can cause arbitrary code execution to install additional malware; or abnormal termination of the web browser.

Method of Infection

Maliciously crafted web pages can exploit a vulnerability that lies in unpatched versions of the Windows VBScript and JScript scripting engine.

Removal

AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this combination.

Additional Windows ME/XP removal considerations

Variants

Variants

    N/A

All Information

Overview -

This is a generic detection for malware that attempts to exploit a vulnerability that is patched by the vendor in MS08-022.

More details of this vulnerability and the vendor patch at:

Characteristics

Characteristics -

This is a generic detection for malware that attempts to exploit a vulnerability that is patched by the vendor in MS08-022. The vulnerability lies in the Windows VBScript and JScript scripting engine.

When visiting a malicious website exploiting this vulnerability, the exploit can cause arbitrary code execution to install additional malware; or abnormal termination of the web broswer.

More details of this vulnerability and the vendor patch at:

Symptoms

Symptoms -

When successful, the exploit can cause arbitrary code execution to install additional malware; or abnormal termination of the web browser.

Method of Infection

Method of Infection -

Maliciously crafted web pages can exploit a vulnerability that lies in unpatched versions of the Windows VBScript and JScript scripting engine.

Removal -

Removal -

AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this combination.

Additional Windows ME/XP removal considerations

Variants

Variants -

    N/A