[Dshield] FW: Hackers jump through holes in Microsoft patch

John Hardin johnh at aproposretail.com
Tue Sep 9 21:29:49 GMT 2003


On Tue, 2003-09-09 at 11:20, Yevette Maurer quoted:

> However, security researchers know of at least one exploitation of the
> Object Data vulnerability that is already circulating on the Internet,
> according to a statement by security company Secunia of Copenhagen,
> Denmark.
> 
> An e-mail message that contains HTML code that exploits the
> vulnerability is used to silently retrieve and run a file, "drg.exe,"
> that installs a file called "surferbar.dll" onto the victim's
> computer, according to the Secunia alert.

<plug> in case people aren't aware of it...

http://www.impsec.org/email-tools/procmail-security.html is an email
security filter that, among other things, mangles active-HTML code like
this.

</plug>

--
John Hardin  KA7OHZ                           
Internal Systems Administrator                    voice: (425) 672-1304
Apropos Retail Management Systems, Inc.             fax: (425) 672-0192
-----------------------------------------------------------------------
  Just say ".Nyet"
-----------------------------------------------------------------------
 12 days until Galileo is deorbited




More information about the list mailing list