SecurityHome.eu Exploit.W97.Ginwui.Gen

Home / malware PDF

Exploit.W97.Ginwui.Gen

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Exploit.W97.Ginwui.Gen is also known as Trojan-Dropper.MSWord.1Table.bd, TrojanDropper:Win32/Tagword.B, Win32/Ginwui.A!Dropper, Exploit-OleData.gen.
Explanation :
The exploit affects Microsoft Word 2003. When an infected document is opened, the exploit will allow code execution on the infected machine without the user's intervention.

The exploitable fields needed for the exploit to work are located in the Worddocument and 0Table (possible 1Table) streams of a MS Word document.

The current exploatation of this vulnerability consists of code dropping a Backdoor on the infected machine, wich is detected by BitDefender as Backdoor.Ginwui.A
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20