Encyclopedia

Panda Internet Security 2010

Full protectión for complete peace of mind on the Internet.

BUY with 20% OFF	DOWNLOAD FREE*
* Includes 3 months' services FREE

Codebase.gen
Threat LevelDamageDistribution

At a glance Tech details Solution

Effects

Codebase.gen is a piece of code included in the body of an email message or a web page in order to exploit two vulnerabilities in the browser Internet Explorer. Affected software is Internet Explorer v4.0 or later, and programs that use this browser internally to perform some operations, such as Outlook and Outlook Express.

The first vulnerability is known as Browser Cache Script Execution in My Computer Zone. This vulnerability allows to run arbitrary code in My Computer zone without the user's permission when accessing a malicious web site or opening specially crafted email messages in HTML format.

The arbitrary code is usually embedded in the web site or the received email message, and could be of any nature: viruses, worms, Trojans, backdoors, etc. Additionally, this vulnerability could also allow an attacker to browse the files on the affected computer or to run an executable file already present on it. However, the attacking user would not be able to pass any parameters to the executable file.

The second vulnerability is known as Object Tag. It allows an attacking user to run arbitrary code on the affected computer, with the same user rights as the logged-on user.

Both vulnerabilities are exploited including Codebase.gen in malicious web pages or embedding it in the body of an specially crafted email message, which is then mass-mailed. The computer is affected when the user accesses the web page or opens the email message.

Aug. 27, 2004: Computers can also be affected by Codebase.gen during the installation of a skin for Winamp v3.0 or later: as part of the installation process, an HTML file is executed. If this file would contain the code of Codebase.gen, then it would be possible to execute any type of file without users consent. So installing a Winamp skin could compromise computer security.

If your computer has Internet Explorer v4.0 or later installed, it is highly recommendable to download the security patch from Microsoft's website. Click here to access the web page for further information and downloading the patch.

Further Details

Codebase.gen is written in a script language (Visual Basic Script, JavaScript, etc), and it is 128 bytes in size.

Last updated: 27/08/2004

Virus News

Help your friends against viruses: share, save and subscribe to our security content. Thank you.

Fake virus alert spreads massively across Facebook, reports PandaLabs

Panda Security, leading Spanish software vendor in the 2009 Truffle 100 Europe i...

PandaLabs Annual Malware Report: 2009 sets new records for malware creation: 25 ...

[+ Noticias]

RSS - News coverage on virus and intrusion prevention | TWITTER - PANDA SECURITY

Our Cloud Twitter | Web Map | Contact | Affiliates