Latest Netsky infects via Microsoft flaw

Subject: Latest Netsky infects via Microsoft flaw
From: Gary Stoneburner <gary.stoneburner@nist.gov>
Date: Fri, 16 Apr 2004 09:23:51 -0400
Content-Type: multipart/alternative; boundary="=====================_166210203==.ALT"

re: http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci959943,00.html

"According to Lynnfield, Mass.-based Sophos Inc., "These loopholes enable Netsky to infect users who perform no other action besides just reading the e-mail. E-mails containing the exploit attempt to download a copy of the worm from another user's computer."

Other references:

http://www.sophos.com/virusinfo/analyses/w32netskyv.html

"Downstream victims can become infected simply by reading an email sent by the virus. Note, however, that this email relies on a bug in Microsoft Outlook for which a patch has already been published. If you have downloaded and applied up-to-date patches from Microsoft, then the exploit used by this email will not work and the email is harmless."

Appears to be pretty important to apply patches to Outlook. Have you? :-)

Cheers,
Gary

************************************************************************** * Opinions expressed are not intended to reflect an official position ************************************************************************** * Gary Stoneburner
* Computer Security Division, National Institute of Standards & Technology
* 100 Bureau Drive, Stop 8930, Gaithersburg, MD 20899-8930
* Phone: 301-975-5394, FAX: 301-948-0279, Email: Stoneburner@nist.gov
* http://csrc.nist.gov/staff/stoneburner/gshome.html
**************************************************************************

Prev by Date: Witty Extinction
Next by Date: If true - Info Operations by US against former USSR
Prev by thread: If true - Info Operations by US against former USSR
Next by thread: Witty Extinction

Date Index | Thread Index | Problems or questions? Contact list-master@nist.gov