Test ID:	1.3.6.1.4.1.25623.1.0.15746
Category:	Malware
Title:	Bofra Virus Detection
Summary:	The remote host seems to have been infected with the Bofra virus or one of its; variants, which infects machines via an Internet Explorer IFRAME exploit.;; It is very likely this system has been compromised.
Description:	Summary: The remote host seems to have been infected with the Bofra virus or one of its variants, which infects machines via an Internet Explorer IFRAME exploit. It is very likely this system has been compromised. Solution: Re-install the remote system. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1050 BugTraq ID: 11515 http://www.securityfocus.com/bid/11515 Bugtraq: 20041024 python does mangleme (with IE bugs!) (Google Search) http://www.securityfocus.com/archive/1/379261 Bugtraq: 20041102 MSIE <IFRAME> and <FRAME> tag NAME property bufferoverflow PoC (Google Search) http://marc.info/?l=bugtraq&m=109942758911846&w=2 Cert/CC Advisory: TA04-315A http://www.us-cert.gov/cas/techalerts/TA04-315A.html Cert/CC Advisory: TA04-336A http://www.us-cert.gov/cas/techalerts/TA04-336A.html CERT/CC vulnerability note: VU#842160 http://www.kb.cert.org/vuls/id/842160 http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028009.html http://lists.grok.org.uk/pipermail/full-disclosure/2004-October/028035.html Microsoft Security Bulletin: MS04-040 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-040 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1294 http://secunia.com/advisories/12959/ XForce ISS Database: ie-iframe-src-name-bo(17889) https://exchange.xforce.ibmcloud.com/vulnerabilities/17889
Copyright	Copyright (C) 2005 Brian Smith-Sweeney

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.