Security Incidents: Re: sureseeker.com

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Incidents mailing list archives

Re: sureseeker.com

From: "Sloan, Scott (CIT)" <SloanS () MAIL NIH GOV>
Date: Mon, 6 Nov 2000 13:54:30 -0500

Sureseeker is a JavaScript Trojan that uses the ActiveX Control security
vulnerabilities that were announced by Microsoft in MS-99-032 on August 31,
1999.

You can find more information at the FedCIRC website.

Scott W. Sloan
NIH/CIT/DNST
Federal Bldg., Rm. 416
7550 Wisconsin Ave., MSC 9110
Bethesda, MD  20892
(301) 402-6538  Voice
(301) 480-6041  Fax
mailto:sloan.scott () nih gov


-----Original Message-----
From: Ken Grossman [mailto:ken.grossman () GSA GOV]
Sent: Monday, November 06, 2000 9:24 AM
To: INCIDENTS () SECURITYFOCUS COM
Subject: Re: sureseeker.com


Does anyone have more detailed information on this "trojan" then what is
provided on the F-Secure website and what Ms. McPherson and Mr. Waddoups
have in their e-mails.  I have people wondering if it uses JAVA, ActiveX,
or JavaScript.  Any information would be a big help.  Thanks.

Ken Grossman

By Date By Thread

Current thread:

Re: sureseeker.com Nate W (Nov 01)
- <Possible follow-ups>
- sureseeker.com Nate W (Nov 01)
- Re: sureseeker.com Melissa McPherson (Nov 02)
- Re: sureseeker.com Ken Grossman (Nov 07)
- Re: sureseeker.com Sloan, Scott (CIT) (Nov 08)
  - Re: sureseeker.com Nate W (Nov 09)