Js_realplay.j

12-25-2007

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

Js_realplay.j

This exploit is hosted on a Web site and runs when a user accesses the said Web site.
It takes advantage of a known vulnerability in several versions of the media player RealPlayer that causes a stack overflow and allows the download of possibly malicious files on the affected system.
Before exploiting the abovementioned vulnerability, this exploit first checks if the affected machine is running Windows 2000 or Windows XP with Internet Explorer 6 or 7. It also checks if RealPlayer is installed on the system and what version of the player is installed to determine the first few bytes of shell code that it writes on the affected system.
Once it successfully exploits the said vulnerability, this exploit connects to a certain URL to download a malicious file which is detected by Trend Micro as PE_MUMAWOW.AO-O. As a result, malicious routines of the downloaded file may be exhibited on the affected system.

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

SVN::Web::ConfigData(3pm) User Contributed Perl Documentation SVN::Web::ConfigData(3pm) NAME
SVN::Web::ConfigData - Configuration for SVN::Web SYNOPSIS
use SVN::Web::ConfigData; $value = SVN::Web::ConfigData->config('foo'); $value = SVN::Web::ConfigData->feature('bar'); @names = SVN::Web::ConfigData->config_names; @names = SVN::Web::ConfigData->feature_names; SVN::Web::ConfigData->set_config(foo => $new_value); SVN::Web::ConfigData->set_feature(bar => $new_value); SVN::Web::ConfigData->write; # Save changes DESCRIPTION
This module holds the configuration data for the "SVN::Web" module. It also provides a programmatic interface for getting or setting that configuration data. Note that in order to actually make changes, you'll have to have write access to the "SVN::Web::ConfigData" module, and you should attempt to understand the repercussions of your actions. METHODS
config($name) Given a string argument, returns the value of the configuration item by that name, or "undef" if no such item exists. feature($name) Given a string argument, returns the value of the feature by that name, or "undef" if no such feature exists. set_config($name, $value) Sets the configuration item with the given name to the given value. The value may be any Perl scalar that will serialize correctly using "Data::Dumper". This includes references, objects (usually), and complex data structures. It probably does not include transient things like filehandles or sockets. set_feature($name, $value) Sets the feature with the given name to the given boolean value. The value will be converted to 0 or 1 automatically. config_names() Returns a list of all the names of config items currently defined in "SVN::Web::ConfigData", or in scalar context the number of items. feature_names() Returns a list of all the names of features currently defined in "SVN::Web::ConfigData", or in scalar context the number of features. auto_feature_names() Returns a list of all the names of features whose availability is dynamically determined, or in scalar context the number of such features. Does not include such features that have later been set to a fixed value. write() Commits any changes from "set_config()" and "set_feature()" to disk. Requires write access to the "SVN::Web::ConfigData" module. AUTHOR
"SVN::Web::ConfigData" was automatically created using "Module::Build". "Module::Build" was written by Ken Williams, but he holds no authorship claim or copyright claim to the contents of "SVN::Web::ConfigData". perl v5.14.2 2012-06-11 SVN::Web::ConfigData(3pm)

Malware Advisories (RSS)

Js_realplay.j

LEARN ABOUT DEBIAN

svn::web::configdata