Trend Micro Virus Alert - JS_JAPROX.A

Discussion in 'malware problems & news' started by Randy_Bell, Jul 16, 2005.

Thread Status:
Not open for further replies.
  1. Randy_Bell

    Randy_Bell Registered Member

    Joined:
    May 24, 2002
    Posts:
    3,004
    Location:
    Santa Clara, CA
    JS_JAPROX.A is a malicious, memory-resident Script Trojan that exploits the JView Profiler vulnerability, allowing a remote user to execute commands locally on the affected machine. This script runs on Windows 95, 98, ME, NT, 2000, XP, and Server 2003.

    Microsoft has identified this as a critical vulnerability, and is recommending that Windows users download the update. For more information, please read Microsoft Security Bulletin MS05-037 and download the update.

    This vulnerability allows a remote user to issue any of the following commands locally, on the affected machine:

    * Install programs
    * View/Change/Delete files and system information
    * Create new accounts with full user privileges

    In addition, this malicious JavaScript uses the vulnerability to change the homepage of the affected system's Internet Explorer. It also connects to an adult Web site.

    If you would like to scan your computer for JS_JAPROX.A, or thousands of other worms, viruses, Trojans and malicious code, visit HouseCall, Trend Micro's free, online virus scanner at: http://housecall.trendmicro.com/

    JS_JAPROX.A is detected and cleaned by Trend Micro pattern file #2.728.04 and above.
     
Loading...
Thread Status:
Not open for further replies.