SitePoint Sponsor

User Tag List

Results 1 to 6 of 6
  1. #1
    SitePoint Evangelist hexburner's Avatar
    Join Date
    Jan 2007
    Location
    Belgium
    Posts
    591
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Changed: McAfee detects jQuery as malicious

    Hello,

    This morning I received a call from one of my clients.
    When opening their website http://www.dfmoffice.be in IE7, Norton McAfee Antivirus shows an alert that an exploit (js/exploit-bo.gen) is found.
    It seems to be a problem with the compressed jquery.js, as there are no other files that could be seen as malicious.

    As I'm not an owner of any Norton McAfee programs, can someone with IE7 and Norton McAfee Antivirus confirm that the compressed jquery.js is the problem?

    Best regards,
    Vincent

    Edit: My client assumed he was using Norton in his office, after calling him again to evaluate the problem once more -because I couldn't find any problems with Norton AV- it turns out he's using McAfee.
    Found a bugticket:
    http://dev.jquery.com/ticket/2106
    Last edited by hexburner; Jan 3, 2008 at 06:18. Reason: Problem identified, no solution found
    FOR SALE: 1 set of morals, never used, will sell cheap

  2. #2
    SitePoint Wizard silver trophy kyberfabrikken's Avatar
    Join Date
    Jun 2004
    Location
    Copenhagen, Denmark
    Posts
    6,157
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Maybe it's the flash component, it doesn't like?

  3. #3
    SitePoint Addict
    Join Date
    Feb 2005
    Location
    Brisbane, Australia
    Posts
    306
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Using Norton Internet Security 2007 (which includes the anti-virus software) and both FF2 and IE7, no warnings or alerts were shown when looking through the English version of the website.

  4. #4
    SitePoint Addict
    Join Date
    Dec 2007
    Posts
    207
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

  5. #5
    SitePoint Evangelist hexburner's Avatar
    Join Date
    Jan 2007
    Location
    Belgium
    Posts
    591
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    My client assumed he was using Norton in his office, after calling him again to evaluate the problem once more -because I couldn't find any problems with Norton AV- it turns out he's using McAfee.
    I found a bug ticket posted on the website of jquery (which is used in the website in question):
    http://dev.jquery.com/ticket/2106
    FOR SALE: 1 set of morals, never used, will sell cheap

  6. #6
    SitePoint Evangelist hexburner's Avatar
    Join Date
    Jan 2007
    Location
    Belgium
    Posts
    591
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Now I was able to identify the problem, I did some research.
    Installed McAfee SecurityCenter, downloaded the updates, and then out of the sudden, the virus definition list (DAT version 5197.0000) identified jQuery as js/exploit-bo.gen
    After a couple of minutes I got an update (DAT version 5198.0000) and the problem was solved.

    Hooray for updates, boo for bad ones...
    FOR SALE: 1 set of morals, never used, will sell cheap


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •