Exploit.Baofeng.A

( Trojan.JS.Agent.OX )

Spreading:	medium
Damage:	low
Size:	<100k
Discovered:	2009 Feb 17

SYMPTOMS:

This detection may be triggered when accessing compromised web pages.

TECHNICAL DESCRIPTION:

This exploit is based on a vulnerability that affects the "rawParse"
method of the BaoFeng Storm ActiveX control (mps.dll), identified by
CLSID:6BE52E1D-E586-474F-A6E2-1A85A9B4D9FB.
Using this exploit, a malicious script can execute arbitrary code in the context of the current process, which will usually download and execute malicious files.

Versions of the Baofeng Storm Player affected:
2.7
2.6
2.5
2.4
2.3
2.2

Removal instructions:

Please let BitDefender disinfect your files.

ANALYZED BY:

Balazs BIRO, jr. virus researcher

Intelligence Report Archives

Virus Encyclopedia
Real-time Virus Reporting
Security rules
Naming Convention

Quick Links » New Game Safe » Renew License » Self Service » Free Online Scanner