 |
Name:
Danmec.Asprox.SQL.Injection
|
Released Date:
May 21 2008
|
Severity:
high
|
|
|
|
|
|
|
|
|
|
|
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
|
Description
|
|
The Asprox trojan is designed to create a spam botnet and send spam emails. It installs as a system service named "Microsoft Security Center Extension". It uses Google to search for .asp pages, then sends blind SQL-injection attack requests to the websites that are found.
|
|
|
|
Impact
|
|
System Compromise: Remote attackers can gain control of vulnerable systems.
|
|
|
|
Affected Products
|
|
Any website based on ASP technologies and using Microsoft SQL server as the backend database server.
|
|
Aliases
|
|
References
|
http://www.secureworks.com/research/threats/danmecasprox/?threat=danmecasprox
|
|
Recommended Actions
|
Scan the infected system with Antivirus software.
Update the web application to the latest version.
|
|
