Additional Details
Trojan-Downloader:JS/Agent.ANI exploits a buffer overflow vulnerability in the PowerPlayer.dll ActiveX control in PPStream versions 2.0.1.3829.
It injects a shellcode that downloads and executes arbitrary files.
The downloaded file is saved to the following location:
The vulnerability is referenced as CVE candidate CVE-2007-4748.