Exploit:Java/CVE-2011-3544 is a virus on Java. This virus uses a software vulnerability to download and run other files on the user's PC, including malware.
It runs when the user visits a hacked website and the user has a vulnerable version of Java. Legitimate websites can also be hacked to unwillingly host this threat.
Oracle Java SE JDK and JRE 7 and 6 Update 27 and earlier are all vulnerable to this threat.
To check if the user is running a vulnerable version of Java:
- Go to the control panel (Select Start then Control Panel)
- Select Programs. If Java is installed, the user will see it in the list of installed programs. Click it to open the Java Control Panel.
- On the General tab, click About to see which version of Java the user have installed.
The user may get a detection for this threat when the user visits a website that has the malicious code, even if the user is not using a vulnerable version of Java. This doesn't mean that the user have been compromised, it means an attempt to compromise the user's computer has been made.
The vulnerability that this threat exploits is described in CVE-2011-3544