1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: CritXPack Exploit Kit Download 2

Web Attack: CritXPack Exploit Kit Download 2

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to download exploits from a malicious toolkit which may compromise a computer through various vendor vulnerabilities.

Additional Information

Malicious toolkits contain various exploits bundled into a single package. Victims visiting the malicious server hosting exploit toolkit is attacked with several different exploits exploiting different vulnerabilities one by one. Exploits may include malicious PDF files and java applets.

Affected

  • Various browsers.

Response

No further action is required but you may wish to perform some of the following actions as a precautionary measure.
Run the Norton Power Eraser. (home users)
Run the Symantec Power Eraser. (business users)
Update your product definitions and perform a full system scan.
Identify suspicious files.
Submit suspicious files to Symantec for analysis.

If you believe that the signature is reported erroneously, please read the following:
Change the behavior of Symantec IPS signatures.
Report a potential false positive to Symantec.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube