|
Full Disclosure
mailing list archives
old bug - new wired
From: Papp Geza <pappgeza () tolna net>
Date: Mon, 2 Feb 2004 03:34:26 +0100
Hello FitzGerald
2004. február 2., 2:33:09, írtad:
This is good.
New virus is - example Explorer bug (old bug)
Microsoft Security Bulletin MS02-015 Print
28 March 2002 Cumulative Patch for Internet Explorer
Originally posted: March 28, 2002
Updated: May 09, 2003
W32/Eyeveg-B is a password stealing Trojan and network worm.
The worm may arrive in an HTML file that exploits a Microsoft Internet Explorer vulnerability which allows the worm to
be executed.
For further information on this vulnerability and for details on how to protect/patch the computer against such attacks
please see Microsoft security bulletin
MS02-015.
When first run, W32/Eyeveg-B copies itself to the Windows System folder using a random filename and adds its pathname
to the following registry entry so that it is run automatically each time the computer is started:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\
--
Üdvözlettel,
Geysap mailto:pappgeza () tolna net
www.gyik.com
"VIRUS CORE TEAM"
====================================
Fiat justitia, pereat mundus!
------------------------------------
we protect your digital worlds...
====================================
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
 By Date 
By Thread
Current thread:
RE: MyDoom.b samples taken down Brad Griffin (Feb 01)
RE: MyDoom.b samples taken down first last (Feb 01)
|
Intro
