Trojan-Downloader:JS/Agent.ANI exploits a vulnerability in a PPStream ActiveX control to download and execute arbitrary code on the exploited system.
Based on the settings of your F-Secure security product, it will either move the file to the quarantine where it cannot spread or cause harm, or remove it.
Trojan-Downloader:JS/Agent.ANI exploits a buffer overflow vulnerability in the PowerPlayer.dll ActiveX control in PPStream versions 184.108.40.20629. It injects a shellcode that downloads and executes arbitrary files.
The downloaded file is saved to the following location:
The vulnerability is referenced as CVE candidate CVE-2007-4748.
Date Created: -
Date Last Modified: -