Malware type: Trojan
Aliases: Exploit.Win32.Pidief.agi (Kaspersky), Bloodhound.Exploit.196 (Symantec), HEUR/HTML.Malware (Avira), Exploit:Win32/Pdfjsc.G (Microsoft)
In the wild: Yes
Destructive: No
Language: English
Platform: Windows 98, ME, NT, 2000, XP, Server 2003
Encrypted: No
Overall risk rating:
Reported infections:
Damage potential:
Distribution potential:
Description:
To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.
Malware Overview
This Trojan takes advantage of Adobe Vulnerability CVE-2009-0658 - an array indexing error when processing a malformed JBIG2 stream within a PDF document. It could allow attackers to cause a vulnerable application to crash or execute arbitrary code by tricking a user into opening a specially-crafted PDF file.
For more information regarding this vulnerability, you may refer to the link below:
Differing variants of this file drop various malware onto the affected system. Below are some of the malware detected by Trend Micro that are dropped by this PDF:
For additional information about this threat, see:SolutionTechnical Details
Description created: Feb. 12, 2009 2:54:39 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
Save & Share
