Home > Threat descriptions >

Exploit:W32/PDFExploit.G

Classification

Category: Malware

Type: Exploit

Aliases: Exploit:​Win32/Pidief.AX

Summary


A program or technique that takes advantage of a vulnerability to remotely access or attack a program, computer or server.

Removal


Automatic action

Based on the settings of your F-Secure security product, it will either automatically delete, quarantine or rename the detected program or file, or ask you for a desired action.

Knowledge Base

Find the latest advice in our Community Knowledge Base.

About the product

See the manual for your F-Secure product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details


Exploit:W32/PDFExploit.G is distributed in a maliciously-crafted PDF file and exploits a vulnerability (CVE-2010-0188) in Adobe Reader program to open a connection to a remote website.

For more information about the vulnerability, please see:

Execution

When the malicious PDF file is executed, a downloader is dropped on the computer and attempts to open a connection to:

  • tiantian.ninth.biz