Original Sender : Ryo Saeba <[EMAIL PROTECTED]>
---------------------------------
At 12:59 PM 11/12/99 +0700, ~ Tom ~ wrote:
>Bener nggak nih berita ... soalnya dimuat di site Microsoft sendiri.
Kayaknya bener.
HOW THE VIRUS WORKS
The virus only affects Microsoft Outlook users with Internet Explorer 5.0,
and only if Windows Scripting Host is installed (standard in Windows 98 and
Windows 2000 installations). If security settings for Internet Zone in IE5
are set to High, the worm will not be executed. It does not run on Windows NT.
According to Schraeder, the virus actually takes advantage of a security
flaw in Microsoft�s ActiveX technology that was discovered in August. Two
components of Internet Explorer 4.0 and 5.0, scriptlet.typelib and Eyedog,
are incorrectly labeled as �trusted� � meaning they can retrieve and alter
critical information on a user�s computer. BubbleBoy calls on these
controls through scripting in the body of an e-mail message in order to
access a victim�s computer.
Users who have installed Microsoft�s patch for the flaw (available from
this Web site) are not vulnerable to BubbleBoy, but they may be vulnerable
to other HTML/e-mail attacks.
�This is a good wake-up call for us, to remind people they need to get the
latest security updates and update their virus scanning engine,� Schraeder
said.
I want to live for love,
not to die for love - CiTyHuNTeR
----------------------------------------------------------------
Compu-Mania MailingList is provided by PT Centrin Utama
Maintained by : [EMAIL PROTECTED]
To Post a msg : Send mail to [EMAIL PROTECTED]
To Unsubscribe : Mail to [EMAIL PROTECTED]
BODY : unsubscribe Compu-Mania
For more information, send mail to [EMAIL PROTECTED]
with "HELP" in the BODY of your mail (without quote).
----------------------------------------------------------------
