News & Events
Contact Us
Support
Partner Login

Partner Login

The PowerShift Program puts a world of resources at your fingertips.

Login Page:
http://powershift.netgear.com/

Apply to be a Partner:
http://powershift.netgear.com/et.cfm?eid=register

Forgot Password:
http://powershift.netgear.com/et.cfm?eid=resend_password

Not Yet a Partner? Learn More
Worldwide
Select A Location
- Austria
- China
- France
- Germany
Language or region not listed above?
Visit our Contact Us page to locate detailed regional contact information using our worldwide map.

Check back soon for deployment of more international websites.
All NETGEAR® Products

All Netgear® Products

From wireless routers and adapters to Layer 3 Managed Switches we have the networking equipment you need for your home or small business.

Visit NETGEAR.com

Products
Explore the ProSecure™ Series Family
ProSecure® UTM Series:
A comprehensive all-in-one gateway security solution for growing businesses needing a firewall
ProSecure® STM Series:
An integrated content security solution for medium sized businesses with an existing firewall
Get Started Today
ProSecure® License Keys

Purchase your license key(s) today for your ProSecure® STM and UTM appliances.
- Purchase Now
Technology
Resources
Partners
Customers
Community
About NETGEAR

Home › Resources › Threat Monitor

Threat Monitor

Troj.Downloader.VBS.Agent.ah

Aliases:
Pattern:	200905141330

Threat Type	Propagation Methods	Systems Affected	Risk Level
TrojanDownloader		Windows NT Windows XP Windows 2000 Windows 95/98/ME MS-DOS Other	Low

A vulnerability was reported in McAfee SecurityCenter.
When McAfee Security products are installed, they register the following ActiveX control on the system:
ProgId: McSubMgr.McSubMgr
ClassId: 9BE8D7B2-329C-442A-A4AC-ABA9D7572602
File: McSubMgr.DLL, (McAfee Subscription manager module 6.0.0.13)
The vulnerability is caused due to an error within the SecurityCenter Subscription Manager ActiveX control (McSubMgr.dll) when handling the "IsOldAppInstalled()" method. A remote user can create specially crafted HTML that, when loaded by the target user, will trigger a buffer overflow in the IsOldAppInstalled() function and execute arbitrary code on the target system. The code will run with the privileges of the target user.
Affected Versions: McAfee AntiSpyware 6.x
McAfee Internet Security Suite 2005
McAfee Internet Security Suite 2006
McAfee Internet Security Suite 2007
McAfee PC Protection Plus 2007
McAfee Personal Firewall Plus 7.x/2006
McAfee Privacy Service 6.x
McAfee QuickClean 4.x
McAfee QuickClean 5.x
McAfee QuickClean 6.x
McAfee SecurityCenter 4.x
McAfee SecurityCenter 6.x
McAfee SecurityCenter 7.x
McAfee SpamKiller 5.x
McAfee SpamKiller 6.x
McAfee SpamKiller 7.x
McAfee Total Protection 2007
McAfee VirusScan 10.x/2006
McAfee VirusScan 8.x/2004
McAfee VirusScan 9.x/2005
McAfee VirusScan Plus 2007
McAfee VirusScan Professional 8.x
McAfee Wireless Home Network Security 2006

Threat Monitor

Troj.Downloader.VBS.Agent.ah

Next Steps

On Demand Demos

Become a Partner

ProSecure™ UTM9S

Tolly Report

On Demand Demos

SC Magazine Rating

Risk FREE 30 Day Trial

Customer Feedback

Review

Request More Information

Customer Feedback