Downloader.FostremRisk Level 1: Very Low
Discovered: July 5, 2009
Updated: July 6, 2009 7:06:52 AM
Also Known As: JS_DLOADER.BD [Trend]
Type: Trojan
Infection Length: Varies
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Vista, Windows XP
CVE References: CVE-2008-0015
Downloader.Fostrem is a Trojan horse that exploits the Microsoft Windows 'MPEG2TuneRequest' Object Remote Code Execution Vulnerability in order to download more malware on to the compromised computer.
Note: Virus definitions dated July 5, 2009 or earlier detect this threat as Downloader and Trojan Horse.ProtectionInitial Rapid Release version July 6, 2009 revision 038
Latest Rapid Release version July 7, 2009 revision 002
Initial Daily Certified version July 6, 2009 revision 004
Latest Daily Certified version July 7, 2009 revision 003
Initial Weekly Certified release date July 8, 2009
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat AssessmentWildWild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy
DamageDamage Level: Low
Payload: Downloads more malware on to the compromised computer.
DistributionDistribution Level: Low
Writeup By: Kaoru Hayashi
