x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Ppdropper.A

Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:Ppdropper.A
Technical name:Trj/Ppdropper.A
Threat level:Low
Type:Trojan
Effects:  

It exploits a vulnerability in certain versions of Power Point, which allows hackers to execute remote code in the computer. This way, it becomes an entry point to other malware, such as Bck/Bifrose.QN.

Affected platforms:

Windows 2003/XP/2000/NT

First detected on:July 15, 2006
Detection updated on:July 19, 2006
StatisticsNo

Brief Description 

    

Ppdropper.A is a Trojan that exploits a vulnerability in certain versions of Power Point, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.

This way, the computer becomes an entry point to other malware, such as the backdoor Bifrose.QN.

Several proofs of concept that exploit this vulnerability in Power Point have been made available. Additionally, code that actively exploits this vulnerability in Power Point has been found.

The vulnerability can be exploited by enticing users into opening a specially crafted Power Point slideshow that contains malicious code. This document can be distributed using several methods, such as email, websites, network shares, etc.

Affected versions are:

  • Office 2003 Service Pack 1 and Service Pack 2: Power Point 2003.
  • Office XP Service Pack 3: Power Point 2002.
  • Office 2000 Service Pack 3: Power Point 2000.
  • Office v. X for Mac: Power Point 2004 v. X for Mac.
  • Office 2004 for Mac: Power Point 2004 for Mac.

 

If you have any of the versions mentioned above, it is recommendable to download and apply the security patch referred to the vulnerabilities in Microsoft Office, which are included in the security bulletin MS06-048. for this vulnerability. Access the web page for downloading the patch.

Visible Symptoms 

    

Ppdropper.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.