Days after the public posting of two Yahoo! Messenger vulnerabilities, malware authors have created malicious codes exploiting the said vulnerabilities. The malware is to be detected as JS_DLOADER.NSP, which points to another component which also exploits one of the Yahoo Messenger vulnerabilities (already detected as JS_AGENT.TEJ). The latter download and install Trojans, detected by Trend as TSPY_AGENT.TRI, TROJ_DELF.HYI, and TROJ_PCCLIENT.FS, in the affected system.

Here, it is evident that malware authors are trying to get income from the installation of Trojan spywares. In order to successfully install these malware into target users machine, they use the latest exploit codes in order to have a higher chance of attaining their goal. Moreover, they also use the web (HTTP) in order to bypass firewalls. In summary, malware author�s uses exploit codes in order to download and install malware hosted in a website. Users should apply latest software security updates provided and update antivirus signatures regularly.