http://www.ca.com/us/securityadvisor Virus and Vulnerability Alerts support@ca.com en-us http://www.ca.comhttp://www.ca.com/images/icons/logo.gif http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=25454 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=25454 Microsoft Windows is vulnerable to a buffer overflow flaw that can allow an attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/111989183" height="1" width="1"/> http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33250 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33250 Microsoft Windows contains a vulnerability that can allow an attacker to gain escalated privileges or execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/111989184" height="1" width="1"/> http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33247 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33247 Microsoft Windows contains a vulnerability that can allow an attacker to gain escalated privileges or execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/111989185" height="1" width="1"/> http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=27322 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=27322 Microsoft Windows contains a vulnerability that can allow attackers to execute arbitrary code or cause a denial of service condition.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/111989186" height="1" width="1"/> http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33248 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=33248 Microsoft Windows contains a vulnerability that can allow an attacker to execute arbitrary code.<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/111989187" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=68664 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=68664 Downloads and Executes Arbitrary Files Once executed, Win32/SillyDl.DUK lies dormant for 1 hour in an attempt to hide itself from the system user. The trojan then contacts the IP address 58.65.239.98 and downloads two files. SillyDl.DUK saves the files to the %My Documents% directory&nbsp;using randomly generated&nbsp;filenames, for example "008567.exe", and then executes the files. Note: %My...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701444" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70365 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70365 Win32/SillyDl.EHG is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701445" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70366 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70366 Win32/SillyDl.EHH is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701446" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70367 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70367 Win32/SillyDl.EHI is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701447" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70368 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70368 Win32/SillyDl.EHJ is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701448" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70369 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70369 Win32/SillyDl.EHK is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701449" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70370 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70370 Win32/SillyDl.EHL is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701450" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70371 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70371 Win32/SillyDl.EHM is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701451" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70372 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70372 Win32/SillyDl.EHN is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701452" height="1" width="1"/> http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70373 http://www.ca.com/us/securityadvisor/virusinfo/virus.aspx?id=70373 Win32/SillyDl.EHO is a downloading trojan. Win32/SillyDl variants may be installed via Internet Explorer exploits when users visit malicious web pages; other trojan downloaders or components; or they may be packaged with software that the user has chosen to install. A downloader is a program that...<br/> <br/> &nbsp;<img src="http://feeds.ca.com/~r/CASecurityAdvisorGeneralThreats/~4/281701453" height="1" width="1"/>