Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.15746
Categoría:Malware
Título:Bofra Virus Detection
Resumen:The remote host seems to have been infected with the Bofra virus or one of its; variants, which infects machines via an Internet Explorer IFRAME exploit.;; It is very likely this system has been compromised.
Descripción:Summary:
The remote host seems to have been infected with the Bofra virus or one of its
variants, which infects machines via an Internet Explorer IFRAME exploit.

It is very likely this system has been compromised.

Solution:
Re-install the remote system.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: BugTraq ID: 11515
Common Vulnerability Exposure (CVE) ID: CVE-2004-1050
http://www.securityfocus.com/bid/11515
Bugtraq: 20041024 python does mangleme (with IE bugs!) (Google Search)
http://www.securityfocus.com/archive/1/379261
Bugtraq: 20041102 MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC (Google Search)
http://marc.info/?l=bugtraq&m=109942758911846&w=2
Cert/CC Advisory: TA04-315A
http://www.us-cert.gov/cas/techalerts/TA04-315A.html
Cert/CC Advisory: TA04-336A
http://www.us-cert.gov/cas/techalerts/TA04-336A.html
CERT/CC vulnerability note: VU#842160
http://www.kb.cert.org/vuls/id/842160
http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028009.html
http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028035.html
Microsoft Security Bulletin: MS04-040
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-040
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1294
http://secunia.com/advisories/12959/
XForce ISS Database: ie-iframe-src-name-bo(17889)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17889
CopyrightCopyright (C) 2005 Brian Smith-Sweeney

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2022 E-Soft Inc. Todos los derechos reservados.