RE: [Declude.Virus] What's the IFrame vulnerability
This may help http://www.microsoft.com/technet/security/bulletin/ms04-040.mspx -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bob McGregor Sent: Thursday, December 02, 2004 1:06 PM To: Declude-List Subject: [Declude.Virus] What's the IFrame vulnerability Just wondering if someone can explain what the HTML / IFrame @ expl capture from f-prot is? is it a vulnerability or worse? thanks, bob --- [This E-mail scanned for viruses by Declude Virus] --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] --- This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type unsubscribe Declude.Virus.The archives can be found at http://www.mail-archive.com.
Re: [Declude.Virus] What's this?
I got an email in my inbox this morning that looks an awful lot like a trojan to me. It had two attachments: class.exe and REGKBCMT.HTM. That looks a lot like Klez.H, which just started spreading (fast) yesterday. The thing that really bothers me is that a peek at the message source shows the class.exe attachment is listed as a midi file: Content-Type: audio/x-midi; That's a now-common virus trick, hoping to get Outlook to automatically run the attachment. I would recommend updating your virus definitions. -Scott --- [This E-mail was scanned for viruses by Declude Virus (http://www.declude.com)] This E-mail came from the Declude.Virus mailing list. To unsubscribe, just send an E-mail to [EMAIL PROTECTED], and type unsubscribe Declude.Virus. You can E-mail [EMAIL PROTECTED] for assistance. You can visit our web site at http://www.declude.com .