Example of How Outdated Java Allows Malware to be Installed.

So, I get a few of these a day at work from our Vipre Enterprise agents.  In the example below a user on our LAN was trying to get VipreAntiVirus[1]some info on a product number (industrial equipment stuff).  He loaded a website, clicked on the catalog, malware scanned his PC, saw that his Java was outdated and then proceeded to try to load Trojan.Win32.Reveton.a (v) (probably FBI ransomware).  In this case Vipre Antivirus stopped the threat.

Machine: PC (10.30.11.49)
User: domain\user
Scan Date: 1/16/2013 10:10 AM
Software Version: 6.0.5481
ThreatDB Version: 15050
Policy: Default

—————–

Threat: Trojan.Win32.Reveton.a (v)
Category: Trojan
Severity: High Risk
Action: Quarantined

Traces Found:

File: C:\Users\user\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\14\b16c94e-5aaef3be

—————–

, , , ,

  • Simon

    I have disabled Java, in all my browsers except IE. Apparently its a bit more complex to carry out.