|
 |
|
|
|
| |
|
|
 |
|
LinkScanner Knowledge Base
 |
Exploit: Troj/Psyme variant
|
Dated Posted: |
08.04.2006
|
Posted By: |
Roger Thompson, CTO
|
Category: |
Research
|
|
|
| |
This is javascript code that relies on unsafe activex controls being used to infect a system. Any activex control which is incorrectly marked Safe for Scripting can be used, although the ADODB object is common. The most interesting aspect of this is that direct arbitrary code execution is rarely possible, but instead, some fairly standard program, such as Windows Media Player is overwritten. The next time the victim tries to run that program, the trojaned code runs, and they're infected.
|
|
Return to Knowledge Base
|
|
|
Anti Virus Software | Eset NOD32 | Kaspersky | Eset Smart Security | Spyware
Removal Software | Spysweeper
Remove Adware |LinkScanner | LinkScanner Online | Firewalls | Outpost | SonicWALL | Disaster Recovery
Spam Blocker | Security Tools | Computer
Security Tips | Layered
Security Model | Security Software Resources
Solution Certifications | Trusted Reviews | Security Goal | Security
Links
Partners | Press Releases | White Papers | About
Us Home
|
|
Contact Software
Security Solutions at (303) 232-9070
Site Map | Privacy Policy | Legal Notice | Home
©
2008 Software Security Solutions. All rights reserved.
|
Cart