Threat Monitor

 

« Back to list

Troj.Downloader.JS.Agent.ent

 
Aliases:
Pattern:200910161330
Threat Type Propagation Methods Systems Affected Risk Level
  • TrojanDownloader
  • Windows NT
  • Windows XP
  • Windows 2000
  • Windows 95/98/ME
  • MS-DOS
  • Other
  • Low
 
This malicious program exploits vulnerability CVE-2008-4388.
Symantec AppStream is an application deployment framework for Microsoft Windows. Symantec AppStream Client is prone to a Code Execution vulnerability. The vulnerability is caused due to the LaunchObj ActiveX control (launcher.dll) with the CLSID: 3356DB7C-58A7-11D4-AA5C-006097314BF8 containing the "installAppMgr()" insecure method. By persuading a victim to visit a specially-crafted Web site, a remote attacker could exploit this vulnerability to execute arbitrary code on the system with the privileges of the victim.
Affected Version: Symantec AppStream Client 5.2

Back to Top

Partner Login

The PowerShift Program puts a world of resources at your fingertips.

Login Page:
http://www.netgear.com/Partners/
Powershift.aspx

Apply to be a Partner:
http://info.netgear.com/forms/powershift

Forget Password:
http://www.netgear.com/Extranet/
ForgotPassword.aspx

Highlights

  • Case Study
    Unity Electronics
    NETGEAR® STM Stream Scanning Technology Provides Unity Electronics with Peace of Mind
    Industry: E-Tailer
  • White Paper (PDF)
    NETGEAR® Stream Scanning Technology
  • White Paper (PDF)
    NETGEAR® In-The-Cloud Distributed Spam Analysis Technology: Network Based Protection Against Email-Borne Threats
  • UTM Flash Demo
    Learn more about the ProSecure™ UTM Solution
  • STM Flash Demo
    Learn more about the ProSecure™ STM Solution