Threat Description



Aliases: Exploit.HTML.Iframe.FileDownload
Category: Malware
Type: Exploit
Platform: HTML


A program or technique that takes advantage of a vulnerability to remotely access or attack a program, computer or server.


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.


Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.

Technical Details

Exploit:HTML/Iframe.FileDownload is the detection of an HTML formatted document that contains code attempting to exploit an Internet Explorer IFrame vulnerability.This vulnerability allows a malicious HTML document, such as e-mail messages, to automatically execute when the document is viewed using Internet Explorer. It also effects e-mail clients that use Internet Explorer to view HTML formatted e-mail messages, such as Outlook and Outlook Express.

Microsoft has more information about this issue available from their Security Bulletin MS01-20, available at:

The fix for the vulnerability is available at:


Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More