The NULL Hole exploit kit is a browser exploit kit that allows a remote attacker to compromise systems by attempting to exploit multiple kernel-mode driver and browser plug-in vulnerabilities. The NULL Hole kit is designed to exploit vulnerabilities in Adobe Reader, Microsoft Windows (kernel-mode driver) and Oracle Java. Infection typically occurs by visiting a malicious URL pointing to the exploit kit or by visiting a compromised website that links to a server hosting the exploit kit. The NULL Hole exploit kit is closely related to the Styx exploit kit (XFRD RTC Threat Ticket #48420).