Exploit:HTML/IESlice.BK exploits a vulnerability in an ActiveX control used by Xunlei Thunder 220.127.116.111.
Malicious or compromised websites use the exploit to download and execute arbitrary code.
Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.
Exploit:HTML/IESlice.BK is a script that exploits a heap-based buffer overflow in the PPlayer.XPPlayer.1 ActiveX control used by the pplayer.dll_1_work DLL of Xunlei Thunder 18.104.22.1681.
Sucessful exploitation allows the attacker to download and execute arbitrary code on the victim's computer.
Exploitation is done via a malicious webpage containing the detected script.
This vulnerability is under review as CVE-2007-6144.
Exploit:HTML/IESlice.BK will attempt to download a file from the following URL and execute it:
The URL was inactive during investigations.