MS06-006: Downloader.EEAZ - Uses Media Player Exploit - Security Protection

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

MS06-006: Downloader.EEAZ - Uses Media Player Exploit

This new Java script based malware agent is low-risk and most folks should be patched. It includes an exploit for a vulnerability patched by Microsoft during early 2006.

MS06-006: Downloader.EEAZ - Uses Media Player Exploit
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=JS%5FDLOADER%2EEAZ

MS06-006: Downloader.EEAZ - Behavioral Diagram
http://www.trendmicro.com/vinfo/images/JS_DLOADER_EAZ2.gif

(MS06-006) Vulnerability in Windows Media Player Plug-in with Non-Microsoft Internet Browsers Could Allow Remote Code Execution (911564)
http://www.microsoft.com/technet/security/bulletin/MS06-006.mspx

QUOTE: This malicious JavaScript may arrive embedded in a file dropped by another malware, manually downloaded and installed by an unsuspecting user, or spammed through email. It may also be hosted by certain Web sites. It takes advantage of the Windows Media Player Plug-in vulnerability.

Posted: Sep 12 2006, 12:34 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.