x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Codebase.gen

Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:Codebase.gen
Technical name:Exploit/Codebase.gen
Threat level:Low
Type:Hacking Tool
Effects:  

It allows arbitrary code to be run on the affected computer, just by accessing a malicious web site or opening an email message in HTML format.

Affected platforms:

Windows 2003/XP/2000/NT/ME/98/95

First detected on:Aug. 27, 2004
Detection updated on:Aug. 27, 2004
StatisticsNo

Brief Description 

    

Codebase.gen is a piece of code included in the body of an email message or a web page in order to exploit two vulnerabilities in the browser Internet Explorer. Affected software is Internet Explorer v4.0 or later, and programs that use this browser internally to perform some operations, such as Outlook and Outlook Express.

Exploited vulnerabilities are Browser Cache Script Execution in My Computer Zone and Object Tag. They allow an attacking user to run arbitrary code on the affected computer without the user's permission when accessing a malicious web site or opening a specially crafted email message in HTML format.

The arbitrary code is usually embedded in the web site or the received email message, and could be of any nature: viruses, worms, Trojans, backdoors, etc.

Aug. 27, 2004: Computers can also be affected by Codebase.gen during the installation of a skin for Winamp v3.0 or later: as part of the installation process, an HTML file is executed. If this file would contain the code of Codebase.gen, then it would be possible to execute any type of file without users consent. So installing a Winamp skin could compromise computer security.

If your computer has Internet Explorer v4.0 or later installed, it is highly recommendable to download the security patch from Microsoft's website. Access the web page for further information and downloading the patch.