New variant of a Trojan Downloader is actively exploiting a recently found vulnerability in Microsoft Word 2000, informs Security Experts at MicroWorld Technologies. The malware infection is caused when the victim opens an infected Word 2000 file in Windows 2000.
The flaw is associated with a forced Memory Corruption error in the text editing software. A Trojan Dropper named ‘Win32.Mdropper’ exploits this vulnerability when you download and open a specially crafted Word file carrying this malware, and proceeds to drop ‘Worm.Mofeir’, a network worm with Backdoor capabilities.
Worm.Mofeir then opens a backdoor channel to contact the remote attacker. Using the backdoor, the intruder can open a terminal access to the system, download code from the Internet and run, send and delete files.