Content
Exploit-CVE2009-1136
- Type
- Trojan
- SubType
- Exploit
- Discovery Date
- 07/13/2009
- Length
- Varies
- Minimum DAT
- 5676 (07/14/2009)
- Updated DAT
- 5709 (08/14/2009)
- Minimum Engine
- 5.3.00
- Description Added
- 07/13/2009
- Description Modified
- 07/14/2009 9:38 AM (PT)
Risk Assessment
- Corporate User
- Low-Profiled
- Home User
- Low-Profiled
Tab Navigation
Characteristics
When installed with a vulnerable version of Office Web Components, commonly used with Microsoft Office; a user may have a trojan downloaded and installed into his machine when browsing upon malicious websites using Internet Explorer.
More details on this vulnerability can be found at:
Symptoms
- Unexpected silent installation of new programs.
- Unexpected links to unfamiliar external websites.
Method of Infection
This threat exploits an unpatched vulnerability in Microsoft Office Web Components.
Removal
AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this combination.
Variants
Variants
N/A
All Information
Overview -
-- Update July 14, 2009 --
The risk assessment of this threat has been updated to Low-Profiled due to media attention at:
http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1361617,00.html
--
This detection covers malware that attempts to exploit an unpatched vulnerability in Microsoft Office Web Components.
Characteristics
Characteristics -
When installed with a vulnerable version of Office Web Components, commonly used with Microsoft Office; a user may have a trojan downloaded and installed into his machine when browsing upon malicious websites using Internet Explorer.
More details on this vulnerability can be found at:
Symptoms
Symptoms -
- Unexpected silent installation of new programs.
- Unexpected links to unfamiliar external websites.
Method of Infection
Method of Infection -
This threat exploits an unpatched vulnerability in Microsoft Office Web Components.
Removal -
Removal -
AVERT recommends to always use latest DATs and engine. This threat will be cleaned if you have this combination.
Additional Windows ME/XP removal considerations
Variants
Variants -
N/A
