The t058.com site contains several exploit attempts aimed at IE (ms-its: protocol object, the vbscript downloader you quote, a suspicious .gif file), and a java applet that apparently can take advantage of holes in Java at least up to JRE 1.4.2_05 (from other reports). There was a recently announced vulnerability in that JRE version, perhaps they use that. Turning off Java will protect you. Upgrading to JRE 1.5 or 1.4.2_06 would protect you if the exploit uses the known hole in 1.4.2_05, but that's less clear. I've seen a couple other sites that loaded the same trojan-laden frame from t058.com Really a JRE bug, but our users don't care whose fault it is. We want to roll out a system to warn users about known vulnerabilities in 3rd party software.
Status: UNCONFIRMED → NEW
Ever confirmed: true
Summary: Exploit in browser → JRE 1.4.2_05 exploit in the wild
*** This bug has been marked as a duplicate of 271559 ***
Status: NEW → RESOLVED
Closed: 15 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.