BleepingComputer.com: MS05-037: Trojan.Jevprox - Low risk IE exploit

A new trojan horse exploit manipulates an IE Java vulnerability patched in July. This is not widespread and it is low risk overall. Please be sure you are on the latest Microsoft patches through Windows Update as other exploits could also manipulate this security vulnerability.

MS05-037: Trojan.Jevprox - Low risk IE exploit

Trojan.Jevprox is a downloader Trojan that exploits the Microsoft Internet Explorer Javaprxy.DLL COM Object Instantiation Heap Overflow Vulnerability described in Microsoft Security Bulletin MS05-037

This post has been edited by harrywaldron: 18 July 2005 - 09:47 PM

Thanks for the intelligence report Harry. I just encountered and dl'd
Swat It, intriguing specs for anti trojan software.https://onesecond-128
bit- encryption.net????-is that security or what?? Real link was
http://swatit.org/download.html it's a free pro version??Exciting when
new software appears,especially spywarrior apps.

Hi - The key protection is to ensure you are up-to-date on all Microsoft security bulletins each month If you perform a Windows Update each 2nd Tuesday of the month (or wait until the next day), you'll be keeping your system protected from the reverse engineering of code that occurs on every update.

I've not used Swat-IT but it sounds like a good tool. Using Antivirus software, a good firewall, and best practices will help also

There's also a new "MS05-036: Color Management Exploit Code in Wild" exploit that is based on vulnerabilities patched by Microsoft in July, that I'll also be warning about in a few minutes