Java ByteVerify - detected, but is it a problem ?

  • Thread starter Thread starter - Bob -
  • Start date Start date
B

- Bob -

System has had an AVG detection of a strain of this via myspace group.
A full scan finds infected files in .jar archive (.class, etc)in IE
temp files. I've read some old posts about updating to the latest
version of Sun Java vs. MS Java and I can do that.

A question first: If a system has the latest MS updates, is this
vulnerability still an issue (so perhaps it's an AVG detection, but
there's no danger of execution/infection)?

It seems like it's been known a long time... are MS VM based systems
now safe from actual infection by this ?

Thanks,
 
- Bob - said:
System has had an AVG detection of a strain of this via myspace group.
A full scan finds infected files in .jar archive (.class, etc)in IE
temp files. I've read some old posts about updating to the latest
version of Sun Java vs. MS Java and I can do that.

A question first: If a system has the latest MS updates, is this
vulnerability still an issue (so perhaps it's an AVG detection, but
there's no danger of execution/infection)?

It seems like it's been known a long time... are MS VM based systems
now safe from actual infection by this ?
Click to expand...

Take a look here:
"Hacked Ad Seen on MySpace Served Spyware to a Million"
and
"MySpace Attacked by Flash Worm"
http://blog.washingtonpost.com/securityfix/

-jen
 
Back
Top