Threat Monitor
Troj.Downloader.JS.Agent.art
| Aliase: | |
|---|---|
| Pattern: | 200911161330 |
| Threat Typ | Verbreitung | Betroffene Systeme | Gefährlichkeit |
|---|---|---|---|
|
|
|
|
This malicious program exploits vulnerability CVE-2008-2551.
C6 Messenger is an IM application. C6 Messenger Installation URL Downloader ActiveX control with the CLSID:c1b7e532-3ecb-4e9e-bb3a-2951ffe67c61 is prone to a remote code-execution vulnerability. The vulnerability is caused due to an error in the Icona SpA C6 Messenger DownloaderActiveX ActiveX Control Module (DownloaderActiveX.ocx). The attacker could exploit this vulnerability to download and load a malicious program, which could allow the attacker to execute arbitrary code on the system with the privileges of the user via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to run.
Affected Version: Icona SpA Icona SpA DownloaderActiveX ActiveX Control Module 1.0.0.1
C6 Messenger is an IM application. C6 Messenger Installation URL Downloader ActiveX control with the CLSID:c1b7e532-3ecb-4e9e-bb3a-2951ffe67c61 is prone to a remote code-execution vulnerability. The vulnerability is caused due to an error in the Icona SpA C6 Messenger DownloaderActiveX ActiveX Control Module (DownloaderActiveX.ocx). The attacker could exploit this vulnerability to download and load a malicious program, which could allow the attacker to execute arbitrary code on the system with the privileges of the user via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to run.
Affected Version: Icona SpA Icona SpA DownloaderActiveX ActiveX Control Module 1.0.0.1
