WMF/Exploit.B
| WMF/Exploit.B |
Destructivity:  Spreading:  Overall risk:
|
| • Detected by virus detection files published: 1/1/2006 | • Type: Trojan |
| • Virus characteristics first published: 1/1/2006 | • Spreading mechanism: Email, Webpage |
| • Virus characteristics latest update: 10/30/2007 | • Overall risk: Medium |
| • Alias: Exploit-WMF trojan, Exploit.Win32.IMG-WMF.a, Troj/DownLdr-QB | • Payload: Downloads backdoor trojan |
| • Infection type: Microsoft Word 6.x/7.x/95 |
| Virus type |
Spreading mechanism |
Destructivity and payload |
Additional descriptions |
Detection and removal |
||||||||||
|
This is a generic detection of a series of download trojans that use a variety of the notorious WMF vulnerability described in http://www.norman.com/Virus/Security_Advisory/2005/28003/. At the time of this writing, only one trojan had been seen with this particular exploit, but it is very effective and it has been spammed out, giving it a high potential infection rate. |
||||||||||||||