Microsoft IIS Download.Ject Trojan Detection

high Nessus Plugin ID 12287

Synopsis

The remote host is infected by a Trojan Horse.

Description

Download.Ject is a Trojan that infects Microsoft IIS servers.

The Trojan's dropper sets it as the document footer for all pages served by IIS Web sites on the infected computer.

Solution

Use an antivirus to clean machine.

See Also

http://www.microsoft.com/security/incident/download_ject.mspx

Plugin Details

Severity: High

ID: 12287

File Name: download_ject.nasl

Version: Revision: 1.11

Type: remote

Family: Backdoors

Published: 6/25/2004

Updated: 1/25/2013

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: www/iis